On Saturday 19 April 2003 03:47 pm, natecars at real-time.com wrote: > On Sat, 19 Apr 2003, waynej at dccmn.com wrote: > > One of the issues I had was my old ISP insisted that I run my cisco in > > router mode and my Freeswan doesn't like that so I had to switch ISPs to > > get bridge support. In router mode, your outside IP address <> your > > eth0 IP address cause it's doing NAT. Freeswan sees this is a > > man-in-middle attack. > > Just buy a routed subnet; then you'll have real public IP's without having > to do bridging. I think what he was saying is the ISP delegates private IPs to their DSLAM. Thus NAT all traffic outgoing. -- Bob Tanner <tanner at real-time.com> | Phone : (952)943-8700 http://www.mn-linux.org, Minnesota, Linux | Fax : (952)943-8500 http://www.linuxjustworks.com | Linux Just Works! Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288 _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota http://www.mn-linux.org tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list