Hi Adrian, Yes, you are right that such a setup is not currently supported. Looks like it will require defining two different "connections" in Openswan configuration and also making sure the L2TP server can serve clients from both. Maybe we can look into extending the configuration syntax to allow multiple "instances".
An-Cheng Adrian F. Dimcev wrote: > Hi An-Cheng, > Thanks for your answer. > One thing comes on my mind right now: > Allow me to draw a simple and maybe common situation: > Say Glendale has three interfaces: External, Internal and a so-called > "Wireless DMZ". > Although it's a little bit archaic, some people prefer to secure their > WLANs using VPN. > Thus they create an anonymous DMZ where they place an AP. > Then they "VPN into" the Internal network from this wireless DMZ. > There might be certain situations where this would be a convenient > solution(say some schools network designs). > So we need to enable "vpn l2tp" on two interfaces: External and Wireless > DMZ. > The wireless clients are directly connected(%direct) while the road > warriors are not. > Looking at Glendale, currently it seems that this is not doable. > Thanks, > Adrian > _______________________________________________ Vyatta-users mailing list Vyatta-users@mailman.vyatta.com http://mailman.vyatta.com/mailman/listinfo/vyatta-users
