From: martin f krafft (madduck_at_madduck.net)
Date: Mon Dec 09 2002 - 19:23:25 CET
also sprach Ken Bantoft <ken_at_freeswan.ca> [2002.12.09.1919 +0100]:
> It depends on your situation. If you use DHCP over IPSec, and assign RW's
> local IP addresses, the no real extra config needed.
how do i find information on how to do that?
> In a traditional RW config, Cable user would only have an eroute for
> 10.0.0.0/8. So his/her traffic to 65.65.65.65 wouldn't go over the
> tunnel. If you wanted, you could set the tunnel for 0.0.0.0/0 (like
> WaveSec) and then all traffic would hit the Secure GW first, in which case
> you'd have tunnel to tunnel traffic.
right, and in that case, the gateway would receive packets through the
tunnel, destined for other RWs, in which case the gateway would just
route in between?
the real trouble is to have the RWs route their stuff correctly, it's
not really a gateway thing at all, is it?
--
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net_at_madduck
NOTE: The public PGP keyservers are broken!
Get my key here: http://people.debian.org/~madduck/gpg/330c4a75.asc
"one should never do anything that
one cannot talk about after dinner."
-- oscar wilde
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Tue Dec 10 2002 - 05:21:07 CET