[Openswan Users] Re: Windows2k/XP L2TP/IPSec client
Jacco de Leeuw
jacco2 at dds.nl
Sun Mar 7 11:49:31 CET 2004
Trevor Benson wrote:
> First off If there is a simpler way to assign DHCP LAN address to a
> Windows XP RoadWarrior AND/OR allow domain authentication for windows
> clients PLEASE let me know ;).
PPTP might be simpler (no certs required) but not necessarily more secure.
> conn Roadwarrior02
>
> left=64.142.54.112
> leftnexthop=%defaultroute
> leftsubnet=192.168.169.0/255.255.255.0
You need to remove the leftsubnet line. It is L2TP that provides
access to the subnet.
> leftcert=/var/ipcop/certs/hostcert.pem
> right=0.0.0.0
right=%any is probably more meaningful here.
And you also need
> leftprotoport=17/0
> rightprotoport=17/1701
as Nate Carlson already pointed out.
Jacco
--
Jacco de Leeuw
mailto:jacco2 at dds.nl How to deal with Windows problems:
http://www.jacco2.dds.nl - Is it a small problem? Reboot.
Zaandam, the Netherlands - Is it a big problem? Reinstall.
More information about the Users
mailing list