that work on the client (following your instructions), the ones I created with the CMAK don't work (at this point, I'm getting "Error 741"). I'm assuming I'm choosing the wrong settings somewhere.
It's probably because MPPE encryption is selected and your pppd does not support it. You don't need MPPE anyway if you already use IPsec.
Also, when doing routing updates configured via the CMAK, the docs say that the user has to be an administrator when making the connection in order for the routing table updates to work. That would be a problem here.
Yes, manipulation of the routing tables probably requires Administrator privileges.
Thanks for the URL - I may have to try the DHCP option even though that will probably add a whole new set of problems to work through. I'm using ISC dhcpd on the network here and I don't know if I can make it send the routing info, let alone get that info through the tunnel and back to the client.
There is DHCP relay software that can run on the server: http://www.strongsec.com/freeswan/dhcprelay/ipsec-dhcp-howto.html
Regarding problems, well, upon closer reading I noticed that this DHCP Classless Routing option only works with XP clients. Great... :-(.
Perhaps the "Use default gateway on remote network" option isn't that bad after all? Especially since disabling it is often regarded a security risk...
Jacco -- Jacco de Leeuw mailto:[EMAIL PROTECTED] Zaandam, The Netherlands http://www.jacco2.dds.nl
