Hello Claude, On Wed, 29.11.2006 at 03:03:12 -0800, Claude Brassel <[EMAIL PROTECTED]> wrote: > client configuration (safenet on windows) I have just added the LAN
I don't know the Safenet client. > 192.168.50 as ip subnet in the "Remote party and Adressing" section. This > work's fine because the hosts I join are only in this (192.168.50) LAN. I don't understand 'join'. You mean, your windows stuff joins a Windows-style domain when the VPN is active? > other gateway's in this LAN, and assigning the clients an IP in this LAN > will permit some ip based rules on other gateway's (that's for future use) But it will probably require you to do some proxy-arp like stuff on your VPN gateway. Opt for real routing instead and adjust the filters on that other machines, if needed. I think this will make life much simpler for you. > But this doesn't explain me how i can connect more then one client from the > same IP I don't understand what you mean by "same IP". FWIW, I have no trouble connecting several mobile clients simultanously to one OpenBSD VPN gateway using X.509 certificates. I do advertise a default route to them, however, so they will only transfer data to that (protected) network, not try to bypass the VPN for Internet access. Best, --Toni++
