>3. However, if you want something simpler and easier, which still provides >you with an encrypted tunnel, take a look at running PPP through an SSH link >- it's a very simple idea which works well, and is pretty flexible about what >you can shovel down the link.
thanks for the suggestion, but i have to use ipsec; my company's checkpoint vpn is configured for that and nothing else :) once i'm authenticated by the firewall, all data is transmitted using ip50 packets, which is my problem; i can't translate the address in the encrypted packet. I think it looks like i'll need to set up freeswan on the linux firewall do the vpn stuff and redirect the relevant packets to my winclient... or something.. cheers, Jon
