Date: Mon, 18 Mar 2013 22:27:50 +0100 From: Yoann Gini <yoann.gini@gmail.com> To: Joe Holden <lists@rewt.org.uk> Cc: freebsd-net@freebsd.org Subject: Re: mpd5 and multiple route to send to clients Message-ID: <222F9A4C-763E-47C0-AE37-3FA0934463E3@gmail.com> In-Reply-To: <A6E1A1CB-BC90-4F22-8527-20D312D2801B@gmail.com> References: <9EC8E2D3-A52B-4FF1-B840-3D962DF8D917@gmail.com> <514665CD.80809@rewt.org.uk> <DA89EA18-0F70-4051-9368-5383F96E8D00@gmail.com> <51474D7D.2030107@rewt.org.uk> <065823BC-24A6-48EE-B689-310D01019998@gmail.com> <51477D96.4070305@rewt.org.uk> <A6E1A1CB-BC90-4F22-8527-20D312D2801B@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=windows-1252 Le 18 mars 2013 =E0 22:22, Yoann Gini <yoann.gini@gmail.com> a =E9crit : >=20 > Le 18 mars 2013 =E0 21:48, Joe Holden <lists@rewt.org.uk> a =E9crit : >=20 >> You use something that can push configuration the client, like = openvpn or run dhcp over something >=20 > Well, I really don=92t understand. >=20 > =46rom my experience, with a Cisco VPN Concentrator or a OS X VPN = Server or a Windows VPN Server, you can set a L2TP VPN service with some = remote config to send to the client (DNS servers, domain name, routing = information [like what it for the private network and what is for the = public one], and so on). >=20 > It supposed to be built-in the VPN client and server. On others = platform, I don=92t need to use a setup based on SSL VPN like OpenVPN = and it=92s not the DHCP who handle that kind of client config but the = built-in mechanisms in the VPN Server (that=92s the case for L2TP and = PPTP). >=20 > I=92m quite surprised to be front of a so difficult problem here. = Routes sends to the clients are something like the 101 VPN course=85 >=20 > How do you handle your routing table on your VPN systems with mpd5 = without having to push routes from your concentrators ? Just to explicitly name it, in case it=92s not clear, what I try to = setup is a Split Tunneling config.= --Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIO2jCCBIow ggNyoAMCAQICECf06hH0eobEbp27bqkXBwcwDQYJKoZIhvcNAQEFBQAwbzELMAkGA1UEBhMCU0Ux FDASBgNVBAoTC0FkZFRydXN0IEFCMSYwJAYDVQQLEx1BZGRUcnVzdCBFeHRlcm5hbCBUVFAgTmV0 d29yazEiMCAGA1UEAxMZQWRkVHJ1c3QgRXh0ZXJuYWwgQ0EgUm9vdDAeFw0wNTA2MDcwODA5MTBa Fw0yMDA1MzAxMDQ4MzhaMIGuMQswCQYDVQQGEwJVUzELMAkGA1UECBMCVVQxFzAVBgNVBAcTDlNh bHQgTGFrZSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxITAfBgNVBAsTGGh0 dHA6Ly93d3cudXNlcnRydXN0LmNvbTE2MDQGA1UEAxMtVVROLVVTRVJGaXJzdC1DbGllbnQgQXV0 aGVudGljYXRpb24gYW5kIEVtYWlsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjmF pPJ9q0E7YkY3rs3BYHW8OWX5ShpHornMSMxqmNVNNRm5pELlzkniii8efNIxB8dOtINknS4p1aJk xIW9hVE1eaROaJB7HHqkkqgX8pgV8pPMyaQylbsMTzC9mKALi+VuG6JG+ni8om+rWV6lL8/K2m2q L+usobNqqrcuZzWLeeEeaYji5kbNoKXqvgvOdjp6Dpvq/NonWz1zHyLmSGHGTPNpsaguG7bUMSAs vIKKjqQOpdeJQ/wWWq8dcdcRWdq6hw2v+vPhwvCkxWeM1tZUOt4KpLoDd7NlyP0e03RiqhjKaJMe oYV+9Udly/hNVyh00jT/MLbu9mIwFIws6wIDAQABo4HhMIHeMB8GA1UdIwQYMBaAFK29mHo0tCb3 +sQmVO8DveAky1QaMB0GA1UdDgQWBBSJgmd9xJ0mcABLtFBIfN49rgRufTAOBgNVHQ8BAf8EBAMC AQYwDwYDVR0TAQH/BAUwAwEB/zB7BgNVHR8EdDByMDigNqA0hjJodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9BZGRUcnVzdEV4dGVybmFsQ0FSb290LmNybDA2oDSgMoYwaHR0cDovL2NybC5jb21vZG8u bmV0L0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QuY3JsMA0GCSqGSIb3DQEBBQUAA4IBAQAZ2IkRbyis pgCi54fBm5AD236hEv0e8+LwAamUVEJrmgnEoG3XkJIEA2Z5Q3H8+G+v23ZF4jcaPd3kWQR4rBz0 g0bzes9bhHIt5UbBuhgRKfPLSXmHPLptBZ2kbWhPrXIUNqi5sf2/z3/wpGqUNVCPz4FtVbHdWTBK 322gnGQfSXzvNrv042n0+DmPWq1LhTq3Du3Tzw1EovsEv+QvcI4l+1pUBrPQxLxtjftzMizpm4Qk LdZ/kXpoAlAfDj9N6cz1u2fo3BwuO/xOzf4CjuOoEwqlJkRl6RDyTVKnrtw+ymsyXEFs/vVdoOr/ 0fqbhlhtPZZH5f4ulQTCAMyOofK7MIIFGjCCBAKgAwIBAgIQbRnqpxlPajMi5iIyeqpx3jANBgkq hkiG9w0BAQUFADCBrjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAlVUMRcwFQYDVQQHEw5TYWx0IExh a2UgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMSEwHwYDVQQLExhodHRwOi8v d3d3LnVzZXJ0cnVzdC5jb20xNjA0BgNVBAMTLVVUTi1VU0VSRmlyc3QtQ2xpZW50IEF1dGhlbnRp Y2F0aW9uIGFuZCBFbWFpbDAeFw0xMTA0MjgwMDAwMDBaFw0yMDA1MzAxMDQ4MzhaMIGTMQswCQYD VQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRow GAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE5MDcGA1UEAxMwQ09NT0RPIENsaWVudCBBdXRoZW50 aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoSEW0tXmNReL4uk4UDIo1NYX2Zl8TJO958yfVXQeExVt0KU4PkncQfFxmmkuTLE8UAakMwn VmJ/F7Vxaa7lIBvky2NeYMqiQfZq4aP/uN8fSG1lQ4wqLitjOHffsReswtqCAtbUMmrUZ28gE49c NfrlVICv2HEKHTcKAlBTbJUdqRAUtJmVWRIx/wmi0kzcUtve4kABW0ho3cVKtODtJB86r3FfB+Os vxQ7sCVxaD30D9YXWEYVgTxoi4uDD216IVfmNLDbMn7jSuGlUnJkJpFOpZIP/+CxYP0ab2hRmWON GoulzEKbm30iY9OpoPzOnpDfRBn0XFs1uhbzp5v/wQIDAQABo4IBSzCCAUcwHwYDVR0jBBgwFoAU iYJnfcSdJnAAS7RQSHzePa4Ebn0wHQYDVR0OBBYEFHoTTgB0W8Z4Y2QnwS/ioFu8ecV7MA4GA1Ud DwEB/wQEAwIBBjASBgNVHRMBAf8ECDAGAQH/AgEAMBEGA1UdIAQKMAgwBgYEVR0gADBYBgNVHR8E UTBPME2gS6BJhkdodHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vVVROLVVTRVJGaXJzdC1DbGllbnRB dXRoZW50aWNhdGlvbmFuZEVtYWlsLmNybDB0BggrBgEFBQcBAQRoMGYwPQYIKwYBBQUHMAKGMWh0 dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VVE5BZGRUcnVzdENsaWVudF9DQS5jcnQwJQYIKwYBBQUH MAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEFBQADggEBAIXWvnhXVW0z f0RS/kLVBqgBA4CK+w2y/Uq/9q9BSfUbWsXSrRtzbj7pJnzmTJjBMCjfy/tCPKElPgp11tA9OYZm 0aGbtU2bb68obB2v5ep0WqjascDxdXovnrqTecr+4pEeVnSy+I3T4ENyG+2P/WA5IEf7i686ZUg8 mD2lJb+972DgSeUWyOs/Q4Pw4O4NwdPNM1+b0L1garM7/vrUyTo8H+2b/5tJM75CKTmD7jNpLoKd RU2oadqAGx490hpdfEeZpZsIbRKZhtZdVwcbpzC+S0lEuJB+ytF5OOu0M/qgOl0mWJ5hVRi0IdWZ 1eBDQEIwvuql55TSsP7zdfl/bucwggUqMIIEEqADAgECAhEA8BSF4QUynr/oAOUnSVCBvTANBgkq hkiG9w0BAQUFADCBkzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQ MA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENP TU9ETyBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTAeFw0xMzAzMDMw MDAwMDBaFw0xNDAzMDMyMzU5NTlaMCUxIzAhBgkqhkiG9w0BCQEWFHlvYW5uLmdpbmlAZ21haWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11zV57Sqb+CpMeUSmttu8MsHvdUR vZS9O5jKxWljaeZgQbr4A/yShO5PB7MgM4KMQjMIOoacShFvyf6ZivL8r8fFbAmc6NsHr4CN4S9T E0WAi/MWUTPLYrD8zx0NsjimxLP/3Ln1b3TDb0Vp/bqOWePStBU2truYBodyGZCQiHVPBZC6d5tu CswgnIbloUTf4RxyGGt8NCl94lBiw6ZNNc+94BRlIY8a6uyV5/9jqiAu/LZVpLV5n9YZ5BCfoRsM GAi94eUzFv/AdCLp+l0OGjQ+K8APeHihjU8/VtNujjW1tA7r5bs3O8wTQ6lCoCV8J+XZMWUK4grO xisqX5umywIDAQABo4IB5DCCAeAwHwYDVR0jBBgwFoAUehNOAHRbxnhjZCfBL+KgW7x5xXswHQYD VR0OBBYEFH28/IbXcUSiVbEyWOgyob3zTeHTMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MCAGA1UdJQQZMBcGCCsGAQUFBwMEBgsrBgEEAbIxAQMFAjARBglghkgBhvhCAQEEBAMCBSAwRgYD VR0gBD8wPTA7BgwrBgEEAbIxAQIBAQEwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29t b2RvLm5ldC9DUFMwVwYDVR0fBFAwTjBMoEqgSIZGaHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09N T0RPQ2xpZW50QXV0aGVudGljYXRpb25hbmRTZWN1cmVFbWFpbENBLmNybDCBiAYIKwYBBQUHAQEE fDB6MFIGCCsGAQUFBzAChkZodHRwOi8vY3J0LmNvbW9kb2NhLmNvbS9DT01PRE9DbGllbnRBdXRo ZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5j b21vZG9jYS5jb20wHwYDVR0RBBgwFoEUeW9hbm4uZ2luaUBnbWFpbC5jb20wDQYJKoZIhvcNAQEF BQADggEBAC2aIbicOEFNkJwJlCEoBFsi/7im9S6E0GwQ2/+bn0GhOTZQ+mkB9Up2A99TsAV2dWJ/ TClZ5a/tx4K6eP+r7q1ci1QcDdomD8NLI+zpU0zx+I/RnEca24AYJ3fC5dS6nR5sjTj2zoYa0pXs CVrMb24vXBr14iLwG7U+REEX6+p0tbwAjrJLPnViS1TvUPBz5J9W2ag10cCaecSsa6VOGR3xR5ah r9pWGtKZ+xKxnuPsmny5xKCeB+73ZI6DTanIXzHiduGm3A/y7maIjJq4gy7Vm2hH3HaBTV4ZS/DZ 2/sKr5k9/asWaJosS5ciE00tMLCrvogWdF4xhSxUrm/C7j4xggOuMIIDqgIBATCBqTCBkzELMAkG A1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEa MBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENPTU9ETyBDbGllbnQgQXV0aGVu dGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQQIRAPAUheEFMp6/6ADlJ0lQgb0wCQYFKw4DAhoF AKCCAdkwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMTMwMzE4MjEy NzUxWjAjBgkqhkiG9w0BCQQxFgQUpRIX+Mj593EEygdLdIGMgf+d4hIwgboGCSsGAQQBgjcQBDGB rDCBqTCBkzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UE BxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxOTA3BgNVBAMTMENPTU9ETyBD bGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQQIRAPAUheEFMp6/6ADlJ0lQ gb0wgbwGCyqGSIb3DQEJEAILMYGsoIGpMIGTMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRl ciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRl ZDE5MDcGA1UEAxMwQ09NT0RPIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWls IENBAhEA8BSF4QUynr/oAOUnSVCBvTANBgkqhkiG9w0BAQEFAASCAQB1kQ6NaJ0qWiYGmxFFwmKD ngk4MAbLrP2Br4A7iHncf+uAtngBTgjCuSTnrp5NQHhz63h0qyhveN5mLT38E6T3wJHElC3FD+0B 61rxDC18lz1Q/7ZQhj1gF1nSZ/HdnLC1Ih3uXT8KdioOzvJJTC5T/syUlwfByXMYmS6PFpqi6beZ PD1pyv75QkaQnh5iN1HF3QgfsLGfmmhxgZc81wQd2VezBWA3IPvld1nQ5lIACubvAdC+j9M384jS 4z8+oib5g9sgaVMwUsodp+s7kDWZ4KE4vwd8SasixdRKE99jvvxfs7taZz4sZ8alA3upgYtG5r0z wFxpCus3iF7dT+7RAAAAAAAA --Apple-Mail=_C8726F15-288D-4634-9ADF-1B58E3C04C24--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?222F9A4C-763E-47C0-AE37-3FA0934463E3>