[Openswan Users]

Joost Kraaijeveld J.Kraaijeveld at Askesis.nl
Tue Aug 23 18:13:49 CEST 2005


Hi Paul,

On Tue, 2005-08-23 at 17:08 +0200, Paul Wouters wrote:
> On Tue, 23 Aug 2005, Joost Kraaijeveld wrote:
> 
> > Is it possible to connect multiple Windows clients from behind 1 NAT
> > router with a IPSec tunnel to a LAN behind 1 VPN server using X.509
> > certificates? (Because of security requirements it is not possible to
> > create a LAN-LAN VPN tunnel: not all clients are created equal;-))
> 
> If you use X5.09 based tunnel mode connections, yes. There are only 
> problems with transport mode, which is used when Windows is configured
> for L2TP.
Problems as "can't be done" or "difficult to do"? And is a sollution
that uses "transport mode" functional the same a one that uses
"L2TP" (why should one prefer which one)?

TIA

Joost


More information about the Users mailing list