On Saturday 19 April 2003 03:47 pm, natecars at real-time.com wrote:
> On Sat, 19 Apr 2003, waynej at dccmn.com wrote:
> > One of the issues I had was my old ISP insisted that I run my cisco in
> > router mode and my Freeswan doesn't like that so I had to switch ISPs to
> > get bridge support.  In router mode, your outside IP address <> your
> > eth0 IP address cause it's doing NAT.  Freeswan sees this is a
> > man-in-middle attack.
>
> Just buy a routed subnet; then you'll have real public IP's without having
> to do bridging.

I think what he was saying is the ISP delegates private IPs to their DSLAM. 
Thus NAT all traffic outgoing.

-- 
Bob Tanner <tanner at real-time.com>         | Phone : (952)943-8700
http://www.mn-linux.org, Minnesota, Linux | Fax   : (952)943-8500
http://www.linuxjustworks.com             | Linux Just Works!         
Key fingerprint = AB15 0BDF BCDE 4369 5B42  1973 7CF1 A709 2CC1 B288

_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
http://www.mn-linux.org tclug-list at mn-linux.org
https://mailman.real-time.com/mailman/listinfo/tclug-list