From owner-freebsd-net@FreeBSD.ORG Mon Mar 18 21:27:53 2013 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 67ADB388 for ; Mon, 18 Mar 2013 21:27:53 +0000 (UTC) (envelope-from yoann.gini@gmail.com) Received: from mail-we0-x22c.google.com (mail-we0-x22c.google.com [IPv6:2a00:1450:400c:c03::22c]) by mx1.freebsd.org (Postfix) with ESMTP id 03595C35 for ; Mon, 18 Mar 2013 21:27:52 +0000 (UTC) Received: by mail-we0-f172.google.com with SMTP id d46so5221159wer.31 for ; Mon, 18 Mar 2013 14:27:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:content-type:mime-version:subject:from:in-reply-to:date :cc:message-id:references:to:x-mailer; bh=lZGVAbdTs+9y9oR8Yq5A8KwkeIpyqz1qFbvD8K5hwYQ=; b=0eKI2YaqIxR4G7GYV2rusYRXGDp1dlt3oYHaMkQeL+8ScbAxEOVNKeqA2xO0wCn57s m2xPHgJ776X92SJMzmEvO5wkg8dZgUJwSD4Gq+FjXrelSVZDkPrd02sxtWcoEH4YdtPu uRS4OeGsSSEQnVB8LR+8t7xi7U81We5F0IiMM2Z0uLzWI5t5mouzXNMhahGytTtVj/Ei WKGrX2DH0l8t8DTAKMe8dxIWoUHtvNflfb/EMAQ5Lx7OjGMs7dHOOVM03eK1Kx3nNyuK BDN5q+/w53Oz0/2qvdDwaqH9jVZ4ynCQrJJpkjwOtopCnjuhgJJb8fD/4n0iE37PS9pl C0wQ== X-Received: by 10.194.178.9 with SMTP id cu9mr28181641wjc.39.1363642071401; Mon, 18 Mar 2013 14:27:51 -0700 (PDT) Received: from [192.168.1.38] (81.131.1.93.rev.sfr.net. [93.1.131.81]) by mx.google.com with ESMTPS id dm9sm3168663wib.3.2013.03.18.14.27.49 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 18 Mar 2013 14:27:50 -0700 (PDT) Content-Type: multipart/signed; boundary="Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24"; protocol="application/pkcs7-signature"; micalg=sha1 Mime-Version: 1.0 (Mac OS X Mail 6.3 \(1503\)) Subject: Re: mpd5 and multiple route to send to clients From: Yoann Gini In-Reply-To: Date: Mon, 18 Mar 2013 22:27:50 +0100 Message-Id: <222F9A4C-763E-47C0-AE37-3FA0934463E3@gmail.com> References: <9EC8E2D3-A52B-4FF1-B840-3D962DF8D917@gmail.com> <514665CD.80809@rewt.org.uk> <51474D7D.2030107@rewt.org.uk> <065823BC-24A6-48EE-B689-310D01019998@gmail.com> <51477D96.4070305@rewt.org.uk> To: Joe Holden X-Mailer: Apple Mail (2.1503) Cc: freebsd-net@freebsd.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Mar 2013 21:27:53 -0000 --Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=windows-1252 Le 18 mars 2013 =E0 22:22, Yoann Gini a =E9crit : >=20 > Le 18 mars 2013 =E0 21:48, Joe Holden a =E9crit : >=20 >> You use something that can push configuration the client, like = openvpn or run dhcp over something >=20 > Well, I really don=92t understand. >=20 > =46rom my experience, with a Cisco VPN Concentrator or a OS X VPN = Server or a Windows VPN Server, you can set a L2TP VPN service with some = remote config to send to the client (DNS servers, domain name, routing = information [like what it for the private network and what is for the = public one], and so on). >=20 > It supposed to be built-in the VPN client and server. On others = platform, I don=92t need to use a setup based on SSL VPN like OpenVPN = and it=92s not the DHCP who handle that kind of client config but the = built-in mechanisms in the VPN Server (that=92s the case for L2TP and = PPTP). >=20 > I=92m quite surprised to be front of a so difficult problem here. = Routes sends to the clients are something like the 101 VPN course=85 >=20 > How do you handle your routing table on your VPN systems with mpd5 = without having to push routes from your concentrators ? Just to explicitly name it, in case it=92s not clear, what I try to = setup is a Split Tunneling config.= --Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIO2jCCBIow ggNyoAMCAQICECf06hH0eobEbp27bqkXBwcwDQYJKoZIhvcNAQEFBQAwbzELMAkGA1UEBhMCU0Ux FDASBgNVBAoTC0FkZFRydXN0IEFCMSYwJAYDVQQLEx1BZGRUcnVzdCBFeHRlcm5hbCBUVFAgTmV0 d29yazEiMCAGA1UEAxMZQWRkVHJ1c3QgRXh0ZXJuYWwgQ0EgUm9vdDAeFw0wNTA2MDcwODA5MTBa Fw0yMDA1MzAxMDQ4MzhaMIGuMQswCQYDVQQGEwJVUzELMAkGA1UECBMCVVQxFzAVBgNVBAcTDlNh bHQgTGFrZSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxITAfBgNVBAsTGGh0 dHA6Ly93d3cudXNlcnRydXN0LmNvbTE2MDQGA1UEAxMtVVROLVVTRVJGaXJzdC1DbGllbnQgQXV0 aGVudGljYXRpb24gYW5kIEVtYWlsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjmF pPJ9q0E7YkY3rs3BYHW8OWX5ShpHornMSMxqmNVNNRm5pELlzkniii8efNIxB8dOtINknS4p1aJk xIW9hVE1eaROaJB7HHqkkqgX8pgV8pPMyaQylbsMTzC9mKALi+VuG6JG+ni8om+rWV6lL8/K2m2q L+usobNqqrcuZzWLeeEeaYji5kbNoKXqvgvOdjp6Dpvq/NonWz1zHyLmSGHGTPNpsaguG7bUMSAs vIKKjqQOpdeJQ/wWWq8dcdcRWdq6hw2v+vPhwvCkxWeM1tZUOt4KpLoDd7NlyP0e03RiqhjKaJMe oYV+9Udly/hNVyh00jT/MLbu9mIwFIws6wIDAQABo4HhMIHeMB8GA1UdIwQYMBaAFK29mHo0tCb3 +sQmVO8DveAky1QaMB0GA1UdDgQWBBSJgmd9xJ0mcABLtFBIfN49rgRufTAOBgNVHQ8BAf8EBAMC AQYwDwYDVR0TAQH/BAUwAwEB/zB7BgNVHR8EdDByMDigNqA0hjJodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9BZGRUcnVzdEV4dGVybmFsQ0FSb290LmNybDA2oDSgMoYwaHR0cDovL2NybC5jb21vZG8u bmV0L0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QuY3JsMA0GCSqGSIb3DQEBBQUAA4IBAQAZ2IkRbyis pgCi54fBm5AD236hEv0e8+LwAamUVEJrmgnEoG3XkJIEA2Z5Q3H8+G+v23ZF4jcaPd3kWQR4rBz0 g0bzes9bhHIt5UbBuhgRKfPLSXmHPLptBZ2kbWhPrXIUNqi5sf2/z3/wpGqUNVCPz4FtVbHdWTBK 322gnGQfSXzvNrv042n0+DmPWq1LhTq3Du3Tzw1EovsEv+QvcI4l+1pUBrPQxLxtjftzMizpm4Qk LdZ/kXpoAlAfDj9N6cz1u2fo3BwuO/xOzf4CjuOoEwqlJkRl6RDyTVKnrtw+ymsyXEFs/vVdoOr/ 0fqbhlhtPZZH5f4ulQTCAMyOofK7MIIFGjCCBAKgAwIBAgIQbRnqpxlPajMi5iIyeqpx3jANBgkq hkiG9w0BAQUFADCBrjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAlVUMRcwFQYDVQQHEw5TYWx0IExh a2UgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMSEwHwYDVQQLExhodHRwOi8v d3d3LnVzZXJ0cnVzdC5jb20xNjA0BgNVBAMTLVVUTi1VU0VSRmlyc3QtQ2xpZW50IEF1dGhlbnRp Y2F0aW9uIGFuZCBFbWFpbDAeFw0xMTA0MjgwMDAwMDBaFw0yMDA1MzAxMDQ4MzhaMIGTMQswCQYD VQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRow GAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE5MDcGA1UEAxMwQ09NT0RPIENsaWVudCBBdXRoZW50 aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoSEW0tXmNReL4uk4UDIo1NYX2Zl8TJO958yfVXQeExVt0KU4PkncQfFxmmkuTLE8UAakMwn VmJ/F7Vxaa7lIBvky2NeYMqiQfZq4aP/uN8fSG1lQ4wqLitjOHffsReswtqCAtbUMmrUZ28gE49c NfrlVICv2HEKHTcKAlBTbJUdqRAUtJmVWRIx/wmi0kzcUtve4kABW0ho3cVKtODtJB86r3FfB+Os vxQ7sCVxaD30D9YXWEYVgTxoi4uDD216IVfmNLDbMn7jSuGlUnJkJpFOpZIP/+CxYP0ab2hRmWON GoulzEKbm30iY9OpoPzOnpDfRBn0XFs1uhbzp5v/wQIDAQABo4IBSzCCAUcwHwYDVR0jBBgwFoAU iYJnfcSdJnAAS7RQSHzePa4Ebn0wHQYDVR0OBBYEFHoTTgB0W8Z4Y2QnwS/ioFu8ecV7MA4GA1Ud DwEB/wQEAwIBBjASBgNVHRMBAf8ECDAGAQH/AgEAMBEGA1UdIAQKMAgwBgYEVR0gADBYBgNVHR8E UTBPME2gS6BJhkdodHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vVVROLVVTRVJGaXJzdC1DbGllbnRB dXRoZW50aWNhdGlvbmFuZEVtYWlsLmNybDB0BggrBgEFBQcBAQRoMGYwPQYIKwYBBQUHMAKGMWh0 dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VVE5BZGRUcnVzdENsaWVudF9DQS5jcnQwJQYIKwYBBQUH MAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEFBQADggEBAIXWvnhXVW0z f0RS/kLVBqgBA4CK+w2y/Uq/9q9BSfUbWsXSrRtzbj7pJnzmTJjBMCjfy/tCPKElPgp11tA9OYZm 0aGbtU2bb68obB2v5ep0WqjascDxdXovnrqTecr+4pEeVnSy+I3T4ENyG+2P/WA5IEf7i686ZUg8 mD2lJb+972DgSeUWyOs/Q4Pw4O4NwdPNM1+b0L1garM7/vrUyTo8H+2b/5tJM75CKTmD7jNpLoKd RU2oadqAGx490hpdfEeZpZsIbRKZhtZdVwcbpzC+S0lEuJB+ytF5OOu0M/qgOl0mWJ5hVRi0IdWZ 1eBDQEIwvuql55TSsP7zdfl/bucwggUqMIIEEqADAgECAhEA8BSF4QUynr/oAOUnSVCBvTANBgkq hkiG9w0BAQUFADCBkzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQ MA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENP TU9ETyBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTAeFw0xMzAzMDMw MDAwMDBaFw0xNDAzMDMyMzU5NTlaMCUxIzAhBgkqhkiG9w0BCQEWFHlvYW5uLmdpbmlAZ21haWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11zV57Sqb+CpMeUSmttu8MsHvdUR vZS9O5jKxWljaeZgQbr4A/yShO5PB7MgM4KMQjMIOoacShFvyf6ZivL8r8fFbAmc6NsHr4CN4S9T E0WAi/MWUTPLYrD8zx0NsjimxLP/3Ln1b3TDb0Vp/bqOWePStBU2truYBodyGZCQiHVPBZC6d5tu CswgnIbloUTf4RxyGGt8NCl94lBiw6ZNNc+94BRlIY8a6uyV5/9jqiAu/LZVpLV5n9YZ5BCfoRsM GAi94eUzFv/AdCLp+l0OGjQ+K8APeHihjU8/VtNujjW1tA7r5bs3O8wTQ6lCoCV8J+XZMWUK4grO xisqX5umywIDAQABo4IB5DCCAeAwHwYDVR0jBBgwFoAUehNOAHRbxnhjZCfBL+KgW7x5xXswHQYD VR0OBBYEFH28/IbXcUSiVbEyWOgyob3zTeHTMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MCAGA1UdJQQZMBcGCCsGAQUFBwMEBgsrBgEEAbIxAQMFAjARBglghkgBhvhCAQEEBAMCBSAwRgYD VR0gBD8wPTA7BgwrBgEEAbIxAQIBAQEwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t b2RvLm5ldC9DUFMwVwYDVR0fBFAwTjBMoEqgSIZGaHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09N T0RPQ2xpZW50QXV0aGVudGljYXRpb25hbmRTZWN1cmVFbWFpbENBLmNybDCBiAYIKwYBBQUHAQEE fDB6MFIGCCsGAQUFBzAChkZodHRwOi8vY3J0LmNvbW9kb2NhLmNvbS9DT01PRE9DbGllbnRBdXRo ZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5j b21vZG9jYS5jb20wHwYDVR0RBBgwFoEUeW9hbm4uZ2luaUBnbWFpbC5jb20wDQYJKoZIhvcNAQEF BQADggEBAC2aIbicOEFNkJwJlCEoBFsi/7im9S6E0GwQ2/+bn0GhOTZQ+mkB9Up2A99TsAV2dWJ/ TClZ5a/tx4K6eP+r7q1ci1QcDdomD8NLI+zpU0zx+I/RnEca24AYJ3fC5dS6nR5sjTj2zoYa0pXs CVrMb24vXBr14iLwG7U+REEX6+p0tbwAjrJLPnViS1TvUPBz5J9W2ag10cCaecSsa6VOGR3xR5ah r9pWGtKZ+xKxnuPsmny5xKCeB+73ZI6DTanIXzHiduGm3A/y7maIjJq4gy7Vm2hH3HaBTV4ZS/DZ 2/sKr5k9/asWaJosS5ciE00tMLCrvogWdF4xhSxUrm/C7j4xggOuMIIDqgIBATCBqTCBkzELMAkG A1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEa MBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENPTU9ETyBDbGllbnQgQXV0aGVu dGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQQIRAPAUheEFMp6/6ADlJ0lQgb0wCQYFKw4DAhoF AKCCAdkwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMTMwMzE4MjEy NzUxWjAjBgkqhkiG9w0BCQQxFgQUpRIX+Mj593EEygdLdIGMgf+d4hIwgboGCSsGAQQBgjcQBDGB rDCBqTCBkzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UE BxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENPTU9ETyBD bGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQQIRAPAUheEFMp6/6ADlJ0lQ gb0wgbwGCyqGSIb3DQEJEAILMYGsoIGpMIGTMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRl ciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRl ZDE5MDcGA1UEAxMwQ09NT0RPIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWls IENBAhEA8BSF4QUynr/oAOUnSVCBvTANBgkqhkiG9w0BAQEFAASCAQB1kQ6NaJ0qWiYGmxFFwmKD ngk4MAbLrP2Br4A7iHncf+uAtngBTgjCuSTnrp5NQHhz63h0qyhveN5mLT38E6T3wJHElC3FD+0B 61rxDC18lz1Q/7ZQhj1gF1nSZ/HdnLC1Ih3uXT8KdioOzvJJTC5T/syUlwfByXMYmS6PFpqi6beZ PD1pyv75QkaQnh5iN1HF3QgfsLGfmmhxgZc81wQd2VezBWA3IPvld1nQ5lIACubvAdC+j9M384jS 4z8+oib5g9sgaVMwUsodp+s7kDWZ4KE4vwd8SasixdRKE99jvvxfs7taZz4sZ8alA3upgYtG5r0z wFxpCus3iF7dT+7RAAAAAAAA --Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24--