Luiz Otavio Souza wrote:
Damon McMahon wrote:
My query is what I should/need to do to enable flows between the two
non-AP peers 192.168.1.2 and 192.168.1.3? Should flows be routed
through the access point at the IP layer (hence the AP acts as a
gateway for all hosts in the WLAN), or should flows through the access
point occur at the data-link layer with actual IPsec negotiation
occurring between the peers directly?
If you cannot change the AP behaviour try openvpn running on udp.
i don't get it.
i do know that openvpn is very popular in linuxland but where is the
particular relation to the described problem? any internal filters?
layer 2 tunneling?
"try openvpn running on udp" is not a solution. it's nuts.
Yes this is a solution, if you can understand why i am proposing that (and
you can !).
Create subnets is also nuts for this case. Since it looks like station A
cannot talk (IPSec) to station B due to AP filters.
i am wrong here. if the AP is running some kind of intra-bss filter to not
bridge packets from one station to another the subnet solution is correct
and my solution (l2tp) will not help.
luiz
- Re: WLAN & IPsec: flows between two non-AP peers Luiz Otávio Souza
-
