On Sun, 10 Nov 2013 02:31:39 +0200 Kapetanakis Giannis <bil...@edu.physics.uoc.gr> wrote: > On 08/11/13 17:50, YASUOKA Masahiko wrote: >>> What I'm wondering is what you guys do to setup the ipsec path of the >>> tunnel. >>> >>> One option is to use a unique pre-shared key for all clients. But this >>> is probably insecure since >>> it opens MITM attacks. Isn't it? >> Yes. I think IKEv2 or SSTP will help that situation. > > Can IKEv2 be combined with npppd without problems?
IKEv2 will be used without npppd, since IKEv2 itself can be used for remote access vpn. It supports EAP for the authentication and configures IP address and DNS and so on. --yasuoka