2011-12-13 16:19, Ing Etienne V. Depasquale пишет:
I agree that both methods you've suggested are valid ones for connection DTUs
to Sun Ray servers over the Internet, but I'm keen to understand why the
un-complying Sun Ray server is handling the ALP traffic in the way that it does.
On a separate note, regarding your method (2), did you use an external VPN
client or did you use one built in to the Sun Ray 2 DTU itself?
I used a Cisco ASA VM image from http://7200emu.hacki.at/ under
VirtualBox under Solaris as a server and the built-in SR2 client.
There's just one problem, documented in that project, that the
ASA image did not save its SSH keys between reboots, and there
were quirks about saving the running-config in general.
First I meant to use this how-to, originally advertised on-list:
http://www.tjhsst.edu/admin/livedoc/index.php/IPSec_VPN
but in the end it did not pan out due to my time limitations -
I got the ASA image working more or less, and it sufficed.
It would be cleaner (in both flexibility, supportability and
legality) to reconstruct the setup with a linux VM and Raccoon
though... but as a POC it worked, and then the customer got a
real Cisco ASA with a ready-to-use config :)
//Jim
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
