On Saturday 27 August 2005 04:12, Michael W. Holdeman wrote: > OK I have read the vpn howto, and tunneling from the howto, and to be > truthfull i am totally over my head.
http://www.natecarlson.com/linux/ipsec-x509.php As long as the server has a static address, you'll be fine. Doesn't even matter if it's your laptop initiating the connection from a private IP behind your cable modem. Problems are likely to come up if your private IP is in the same range as the private IPs at the other end, in which case you'll probably be needing to get a DHCP lease from the remote end (something I've not done, or even tried to do yet...) Basically, the server has a connection defined which specifies it's certificate, and is left open ended so anyone can connect to it. But, because it's got a certificate only remote hosts which provide a certificate signed by the same CA will be allowed. -- Mike Williams -- gentoo-user@gentoo.org mailing list
