On Mon, 7 Mar 2005, Rolf Fokkens wrote: > Hi, > > Not having too much programming knowledge about openSSL, I wonder why > each VPN config must specify TLS-client or TLS-server. If full-mesh > bridging/routing will be supported in the future, most nodes are just > peers, without a client-server relationship.
SSL/TLS is a client/server-based protocol. To do full-mesh peer-to-peer in the future, we will probably use some sort of abstraction where all peers will be a server by default, but will simultaneously take on a client role when initiating a connection with another peer. This would be an initiator/responder model, which maps fairly cleanly to the client/server metaphor. James
