Dennis Pedersen wrote: > Because on the [EMAIL PROTECTED] Lars Eggert said something about using > transport mode, not tunnel mode. This confused me a bit because isnt > transport between 2 hosts only
I said a possibility would be to use IPsec transport mode OVER AN IPIP TUNNEL, which is not he same as using transport mode alone (which is restricted to host pairs). On the wire, packets generated by either approach look identical. > I have also read the > ftp://ftp.ietf.org/internet-drafts/draft-touch-ipsec-vpn-03.txt a couple of > times, but i still cant seem to figure how the transport mode fits into > this? Forget about security for a moment. Set up a virtual topology using IPIP tunnels, and make sure it works. *Then* turn on transport-mode IKE over the IPIP tunnels to secure it. > Is the howto below a "real" IPIP version or? I'm not sure what you mean here. Lars -- Lars Eggert <[EMAIL PROTECTED]> Information Sciences Institute http://www.isi.edu/larse/ University of Southern California
smime.p7s
Description: S/MIME Cryptographic Signature
