All:
I have just gotten the 2.2.9 Linux kernel to successfully masquerade
IPSec sessions from multiple local hosts. Anyone who is willing to
test an alpha-level release of the kernel patch is welcome to download
and try it. You'll need to obtain a clean 2.2.9 kernel from a
kernel.org mirror.
Note that I will probably be updating it daily for the next few days
as I work out the remaining issues.
Important notice: this version does not yet implement inbound-ESP
destination guessing, so if you have an idle tunnel or a tunnel that
primarily carries inbound data you'll see big delays after a rekey.
Until this is working I suggest you run a process that pings a remote
system over the tunnel so that outbound traffic happens soon after a
rekey.
The patch is available via the Linux VPN Masquerade home page at:
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html
Note: this patch incorporates the PPTP masquerade code developed by
Gordon Chaffee and David Poole.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
-----------------------------------------------------------------------
Efficiency can magnify good, but it magnifies evil just as well.
So, we should not be surprised to find that modern electronic
communication magnifies stupidity as *efficiently* as it magnifies
intelligence.
-- Robert A. Matern
-----------------------------------------------------------------------
98 days until 9/9/99
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
