[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Windows 2000 and Cicsco router interoperability
Paul, my comments were specific to the Remote Access VPN support that ships
in W2K Professional; and I believe all my comments are true.
W2K has no support for IKE-CFG, IKE-AUTH, IPCOMP, and requires PKI/Cert when
protecting L2TP (which is mandatory to create any 'useful' W2K VPN tunnel).
DUN = Dail-up-networking.
Steve.
-----Original Message-----
From: Paul Koning [mailto:pkoning@xedia.com]
Sent: Thursday, May 11, 2000 3:05 PM
To: Stephen.Waters@cabletron.com
Cc: dharkins@network-alchemy.com; ipsec@lists.tislabs.com
Subject: RE: Windows 2000 and Cicsco router interoperability
>>>>> "Waters," == Waters, Stephen <Stephen.Waters@cabletron.com> writes:
Waters,> The point in the text was that W2K does not support remote
Waters,> access when using IPSEC Tunnels on their own, which is very
Waters,> true:
Waters,> 1) no address assignment
Except for mode config, of course.
Waters,> 2) no 'legacy' or 'user' authentication
Huh? What about FQDN and similar identities?
Waters,> 3) no compression
Sure there is. IPCOMP does just fine. Better in fact, because it is
stateless.
Waters,> 4) no DUN integration (like that available for L2TP/PPTP)
What's a DUN?
paul