On Tue, Sep 26, 2006 at 02:01:54AM +0200, viq wrote: > On 9/24/06, Joachim Schipper <[EMAIL PROTECTED]> wrote: > >On Sun, Sep 24, 2006 at 07:10:14PM +0200, Thomas Schoeller wrote: > >> hello all, > >> is it possible with ipsec.conf and ipsecctl in 3.9 to listen for a > >> road warrior with dynamic address. or should i wait for 4.0 where i can > >> specify a fqdn as peer? is it maybe in 4.0 possible to listen for any > >> peer? > > > >I believe you should wait for 4.0. > > Sorry for somewhat piggybacking this thread, but how to configure > that? I am thinking of something like "have all traffic from the > remote box come into network and from there go where it should", is > that at all possible, or it needs to be specified more carefully? I > was trying to set up something like that, but failed... (on current)
i have test this a while back. i was happy with: ike esp from 192.168.0.100 to 0.0.0.0/0 peer 192.168.0.1 in 4.0 also something like that would work ike exp from my.dyndns.org to any peer vpngate.com (not tested) > > >> on more question... > >> when i use fqdn in 4.0 do i have to reload my rule set every time the > >> road warrior change ip? > > > >No. > > > > Joachim > > > > > > > -- > viq
