On Aug 20, 2010, at 10:03 AM, Tom Chadwin wrote: >> Another issue, only one interface can be PPPoE, not both. >> (Assuming you are using PPPoE for your ADSL) > > Nope: PPPoA via external routers. > >> Another issue, IPsec is only supported as static IP to static IP. > > All sites have /29 static subnets, so no problem there. Home users obviously > are dynamic. > >> Another issue, L2TP/IPsec server is not supported. On the >> other hand, OpenVPN can be configured to handle your needs, >> but all your clients would have to switch to OpenVPN. > > Not too much of an issue, to be honest - our current L2TP/IPSec road-warrior > connection have utterly unexplained problems as it is, so a change would not > be out of the question.
Tom, Good, issues squashed. :-) If you want to pursue this, and have a spare net5501, I'd try to setup the net5501/AstLinux box as only VPN/Firewall to replace your current VPN box. Switch to OpenVPN for your road-warrior's and use IPsec to your other sites. If you run into problems you could swap the boxes with little fuss. Then when AstLinux VPN/Firewall is working on a second box, you could then consider combining the functionality on one box with two external interfaces. Lonnie ------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev _______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [email protected].
