Paul Lussier wrote:
> Nortel's (formerly Bay Network's, formerly New Oak's)
> solution is okay. I find it to be quite robust, quite
> secure, and incredibly easy to configure and manage.
I manage the above solution for my employer and agree with
the above points, it wasn't cheap though. We bought the
Contivity Switch 2000 and didn't get much change from $14K
> However, the only client they support is Win95. NT does
> not work, nor do they support Linux.
I can't agree with the above comment. I have plenty of users
using IPSec and PPTP to the contivity from NT. The contivity
also supports L2TP and some other tunneling protocols but
we don't use them. We use Nortels IPSec windoz client
version 2.51 and the PPTP stuff straight from M$ and have
really only had "luser error" and "M$ inability to do routing
or organise DNS properly" errors.
As for Linux support, The Free/SWAN stuff specifically states
that IPSec won't cooperate with this device in client mode
(they give reasons why and suggest it will eventually be fixed)
but report some success in use as a "branch office" router. I
haven't tried either though. I did play with PPTP while I was
on the road one time, got very close to getting it working
from Linux to the Contivity before getting home. When at home,
the linux firewall here sets up a simple IPIP tunnel to works
firewall as needed, not the most secure but all I require.
Lata
/dan
--
Daniel Sutcliffe <[EMAIL PROTECTED]>
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
