On Tue, Sep 15, 2009 at 04:41, Reyk Floeter <r...@openbsd.org> wrote:
> I recently implemented support for DHCP-over-IPsec (RFC 3456) in
> dhclient(8) and dhcpd(8). B This makes it very easy to run an OpenBSD
> IPsec gateway with IPsec clients that automatically obtain VPN IP
> address, internal DNS IP etc. via DHCP. B In other words - this makes
> it very easy to deploy many (Windows) clients with very minimal
> configuration on the client side.
This is GREAT news! I can't thank you enough for this functionality.
> - The Cisco IPsec VPN client is not supported, it uses some
> proprietary IKE modecfg extensions ("Cisco Unity") and kind of depends
> on XAUTH (username+password authentication that is currently not
> supported).
Does anyone know if XAUTH is [going to be] being worked on? I think
this would make a great addition for those of us who prefer passkeys
to certificates.
-William
