On Dec 23, 2007, at 1:42 AM, scott wrote:
RE: tunnelblick
you should look at
ssh -w tun0:tun0 ...
option; it's comparatively new and a tad under documented but works
nicely, albeit on tcp.
My complaint with the "-w" option is not a lack of it working (works
great), but lack of support through every OS out there; you need to
have a tun driver, also be able to configure the remote side
interface, not to mention the local one.
Then there are the additional protocol resend problems due to it using
tcp for a transport layer. For short, non-lossy, hops, this isn't a
big deal. For lossy environments (wireless, long distances, satellite,
asymmetrical routes, etc), the resending of tcp packets due to packet
loss and fragmentation makes it a non-viable solution. At least, for
anything that's going to be constant or continually used.
I'd also not use that with clients who're less technically adept.
