[Openswan Users]
Joost Kraaijeveld
J.Kraaijeveld at Askesis.nl
Tue Aug 23 18:13:49 CEST 2005
Hi Paul,
On Tue, 2005-08-23 at 17:08 +0200, Paul Wouters wrote:
> On Tue, 23 Aug 2005, Joost Kraaijeveld wrote:
>
> > Is it possible to connect multiple Windows clients from behind 1 NAT
> > router with a IPSec tunnel to a LAN behind 1 VPN server using X.509
> > certificates? (Because of security requirements it is not possible to
> > create a LAN-LAN VPN tunnel: not all clients are created equal;-))
>
> If you use X5.09 based tunnel mode connections, yes. There are only
> problems with transport mode, which is used when Windows is configured
> for L2TP.
Problems as "can't be done" or "difficult to do"? And is a sollution
that uses "transport mode" functional the same a one that uses
"L2TP" (why should one prefer which one)?
TIA
Joost
More information about the Users
mailing list