From: Sam Sgro (sam_at_freeswan.org)
Date: Fri Nov 08 2002 - 09:18:54 CET
-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 8 Nov 2002, Jussi Torhonen wrote:
> > Correct. However, Jussi works for SSH, and posts here regularly
> > answering questions about SSH Sentinel. In 99% of those, it's GW
> > -> SN, GW = Single Window [2k|XP], probably roadwarrior too. In these
> > cases, RP Filter is critical as Joe's posts indicate. My answers tend to
> > be tailored to the questioner if possible :)
> >
> > If I were including this in a How-To doc, I'd recommend rp_filter=0, as it
> > would greatly reduce the # of "Why doesn't it work" questions posted about
> > this topic, and the error message FreeS/WAN generates during startup.
>
> Thank you! That information will be included in the new SSH Sentinel
> v1.4 interop guide with FreeS/WAN. I'm currently rewriting it.
One thing worth mentioning: In 2.00, we'll be actively controlling rp_filter,
Pluto's default behavior will to disable it, rather than spit out an error
message.
I'm looking forward to never having to discuss rp_filter with an inexperienced
user again. :)
- --
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPctzcEOSC4btEQUtAQGLhwP/U9Gp2bYrU9kgoIGf9/aSKmIj2uVyEZ54
IMKOtFP4Qsc0dYMGy9a7QmyHXNFroFyoyfUHQvy9YEW8rh+frZsTypfTlTUieIYX
At/yIdDRDRE3IhfAB+nC797UtQ76FDi+aDc9IsyyQZJSG8piPpk/SYmDdH256GY9
7vBf5DRMams=
=HCC9
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Sat Nov 09 2002 - 05:20:36 CET