[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Windows 2000 and Cicsco router interoperability

To: Paul Koning <pkoning@xedia.com>
Subject: RE: Windows 2000 and Cicsco router interoperability
From: "Waters, Stephen" <Stephen.Waters@cabletron.com>
Date: Thu, 11 May 2000 16:34:27 +0100
Cc: dharkins@network-alchemy.com, ipsec@lists.tislabs.com
Sender: owner-ipsec@lists.tislabs.com

Paul, my comments were specific to the Remote Access VPN support that ships
in W2K Professional; and I believe all my comments are true.

W2K has no support for IKE-CFG, IKE-AUTH, IPCOMP, and requires PKI/Cert when
protecting L2TP (which is mandatory to create any 'useful' W2K VPN tunnel).

DUN = Dail-up-networking.

Steve.

-----Original Message-----
From: Paul Koning [mailto:pkoning@xedia.com]
Sent: Thursday, May 11, 2000 3:05 PM
To: Stephen.Waters@cabletron.com
Cc: dharkins@network-alchemy.com; ipsec@lists.tislabs.com
Subject: RE: Windows 2000 and Cicsco router interoperability 


>>>>> "Waters," == Waters, Stephen <Stephen.Waters@cabletron.com> writes:

 Waters,> The point in the text was that W2K does not support remote
 Waters,> access when using IPSEC Tunnels on their own, which is very
 Waters,> true:

 Waters,> 1) no address assignment

Except for mode config, of course.

 Waters,> 2) no 'legacy' or 'user' authentication

Huh?  What about FQDN and similar identities?

 Waters,> 3) no compression

Sure there is.  IPCOMP does just fine.  Better in fact, because it is
stateless. 

 Waters,> 4) no DUN integration (like that available for L2TP/PPTP)

What's a DUN?

       paul

Prev by Date: about compliance
Next by Date: RE: about compliance
Prev by thread: RE: Windows 2000 and Cicsco router interoperability
Next by thread: RE: Windows 2000 and Cicsco router interoperability
Index(es):
- Main
- Thread