Hi, The issue with PPPoE, along with other provider networks which need dynamic addressing, either DHCP or PPPoATM, is that IPSec absolutly HATES dymanic ip addressing. You need to either, be given a static ip address for both ends, or use a VPN solution which can perform, IPSec over NAT, like F-Secure VPN clients, Nokia VPN clients and the Altega client from Cisco. These then support IPSec over NAT, but the clients must talk back to the same manufacturers compatible gateway, you lose the inter-compatibility of IPSec : ( The IETF are working on standardising this now.
Bestest, nick -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED]]On Behalf Of Aaron Brasslett Sent: 23 October 2001 16:19 To: [EMAIL PROTECTED] Subject: [FW-1] PPPoE and IKE Hi all, I would like to try and use an ADSL connection that uses PPPoE to create a site to site VPN using IKE. Central office uses FW-1 4. SP3 on NT4.0 SP6a the remote site would use an Intrusion.com PDS 2110 running FW-1 SOHO. Would it be possible to use a PPPoE compatible ADSL router such as the Cisco 827 router that can perform the PPPoE on the firewall's behalf work? Has anyone attempted to implement something like this? Are there other ways of dealing with PPPoE?... maybe using a PPPoE client on the PDS 2110 (if there is such a thing) Unfortunately, the remote site only has ADSL with PPPoE available... otherwise I wouldn't even bother to mess with PPPoE. Any info, advise, or humor appreciated. Aaron =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
