From owner-freebsd-stable@FreeBSD.ORG Wed Apr 6 01:36:56 2005 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0591F16A4CF for ; Wed, 6 Apr 2005 01:36:56 +0000 (GMT) Received: from cain.gsoft.com.au (cain.gsoft.com.au [203.31.81.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id BEC5443D5C for ; Wed, 6 Apr 2005 01:36:54 +0000 (GMT) (envelope-from doconnor@gsoft.com.au) Received: from inchoate.gsoft.com.au (localhost [127.0.0.1]) (authenticated bits=0) by cain.gsoft.com.au (8.12.11/8.12.10) with ESMTP id j361aoLC086473; Wed, 6 Apr 2005 11:06:51 +0930 (CST) (envelope-from doconnor@gsoft.com.au) From: "Daniel O'Connor" To: Walentyn Date: Wed, 6 Apr 2005 11:06:37 +0930 User-Agent: KMail/1.8 References: <1112710364.42529cdc56012@w2b.bigimap.com> In-Reply-To: <1112710364.42529cdc56012@w2b.bigimap.com> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1302446.qdbypAZ3f2"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200504061106.44655.doconnor@gsoft.com.au> X-Spam-Score: -2.5 () IN_REP_TO,MIME_LONG_LINE_QP,PGP_SIGNATURE_2,QUOTED_EMAIL_TEXT,REFERENCES,SPAM_PHRASE_00_01,TO_LOCALPART_EQ_REAL,USER_AGENT X-Scanned-By: MIMEDefang 2.16 (www . roaringpenguin . com / mimedefang) cc: freebsd-stable@freebsd.org Subject: Re: FreeBSD mpd PPTP client connection to SnapGearLITE+ X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Apr 2005 01:36:56 -0000 --nextPart1302446.qdbypAZ3f2 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tue, 5 Apr 2005 23:42, Walentyn wrote: > > Supports MPPE (draft-ietf-pppext-mppe) MPPE is Microsoft Point to > > Point Encryption scheme. It is possible to configure ppp to participate > > in Microsoft's Windows VPN. For now, ppp can only get encryption keys > > from CHAP 81 authentication. ppp must be compiled with DES for MPPE to > > oper- ate. > > I stand corrected. > > From my previous reading, it looked like there were a whole bunch of > disparate patches to give ppp MMPE functionality. From the quoted manual > section, it seems that it has rudimentary functionality if you compile it > yourself. (I prefer NOT to roll my own.) Only if you build world with -DNO_CRYPTO does PPP not have DES support. I have had userland ppp as both a client and server for doing MPPE with. > Also from what I read, it would appear that netgraph/mpd, etc. is a more > integrated more cleanly coded implementation that should work very well -- > if you can get it to work, that is. :) Try ppp and see if it works. > I'll tinker with my set up for another day or two. If I'm able to get it > working I'll report. Otherwise, I found that SnapGear may be dead as a > company but Cyberguard still supports it and has come out with some very > interesting new products, in particular a PCI NIC firewall/VPN (see URL > below) which might just be what I need. > > http://www.cyberguard.com/products/firewall/SG_Family/SG630.html?lang=3Dd= e_EN Looks kind of neat but IMO a bit of a waste of money :) =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart1302446.qdbypAZ3f2 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQBCUz0s5ZPcIHs/zowRAknNAJ9f1XMkb0kHPLJcrKhbqdHePQoBewCghSxY Bv79UifjpITvl2P+MFwlxxo= =olqd -----END PGP SIGNATURE----- --nextPart1302446.qdbypAZ3f2--