On Saturday 19 April 2003 10:41 am, waynej at dccmn.com wrote: > One of the issues I had was my old ISP insisted that I run my cisco in > router mode and my Freeswan doesn't like that so I had to switch ISPs to > get bridge support. In router mode, your outside IP address <> your eth0 > IP address cause it's doing NAT. Freeswan sees this is a man-in-middle > attack. > > Does the ActionTec support bridging? Heh. You are thinking "backwards". You =want= routing when doing IPSec (freeswan). Bridging can be nasty if the upstream router isn't filtering LAN broadcast traffic. -- Bob Tanner <tanner at real-time.com> | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list