>Yeah.. i also prefer IPSec! Aren't W2000 and XP Clients supposed to support
>IPSec VPN aswell ?
They might, but we have a firm mandate from IT (a decision I partly
participated in) that XP will have NO place in our infrastructure.
For now, our only supported desktop platform is Win98. Win2k might
come around, but there's a push towards linux-on-the-desktop, in
which case, much of those types of considerations become moot. ("Ah,
you're running Win*? You're on your own... Cheers!")
>I think i'll go the Free S/Wan way aswell.. am i right, that
>i actually have to install it on the firewall or can i use a second
>machine in a DMZ ?
I know with PoPToP, you can run it on the firewall itself, because
(until I get a dedicated machine), that's what we're doing. :-) I'd
presume you can do the same thing with Freeswan.
D
--
+---------------------+-----------------------------------------+
| [EMAIL PROTECTED] | "Thou art the ruins of the noblest man |
| Derek J. Balling | That ever lived in the tide of times. |
| | Woe to the hand that shed this costly |
| | blood" - Julius Caesar Act 3, Scene 1 |
+---------------------+-----------------------------------------+
