> You need to be much more precise. Your notion of > "both phases of negotiation" doesn't mean anything in a general > sense.
Paul, I was just curious if it could negotiate a tunnel and connect to any of the routers mentioned? Can (Open)Solaris connect to any of the mentioned IPSEC/IKE devices? > What, exactly, are you trying to accomplish? > ... > 2. Address provisioning and configuration. > o, I ask again, do you need these additional > extensions on top of > regular IPsec/IKE, which will negotiate a secure > connection? Yes, and why I asked if you could connect to one of the mentioned devices, or OpenSwan. Think of an application that will only allow a secure IPSEC/IKE VPN connection as the point of access. The largest array of support for clients is desirable. The fact is that tossing an inexpensive router (with IPSEC/IKE VPN support) in the front of a Solaris box would work as well. Unfortunately I'm not at liberty to talk too much about the application.:-( I was originally curious if the punchin code was going to be available at some point, so that a Solaris box could be used much like a Linux box running OpenSwan today for a secure IPSEC/IKE VPN connection. The other piece I was curious about was if an OpenSwan could connect to your punchin server? That would also be useful. -- This message posted from opensolaris.org _______________________________________________ security-discuss mailing list [email protected]
