At 02:29 PM 1/16/2004, Jorgen Norrman wrote:
>As I was writing. What's the difference for IPSEC ? Why can't IPSEC
>handles an IP-adress that was dynamically assigned ? (even if the
>dynamically assigned adress never change)
It won't. It can't tell how you got the address, but it has to know what
it is. So, if it changes, the system on the other end has to be notified
of the change somehow.
The WAN address on my net4501 is handed to me by a DHCP server on the Cox
Communications cable net. It is currently 68.2.98.10 with a netmask of
255.255.252.0. As long as I stay connected and renew my lease like a good
boy (RFC says at one half the lease duration), I keep the same one. But,
for example, when I had the Soekris box taken apart to install a wireless
card I lost the lease and got a different address when I got back up.
That meant I had to get logged onto the VPN endpoint at the office to
notify it of my new address before I could bring my encrypted tunnel back up.
-crl
--
Chad R. Larson (CRL22) chad at eldocomp dot com
Eldorado Computing, Inc. 602-604-3100
5353 North 16th Street, Suite 400
Phoenix, Arizona 85016-3228
-- CONFIDENTIALITY NOTICE --
This message is intended for the sole use of the individual and entity to whom it is addressed, and
may contain information that is privileged, confidential and exempt from disclosure under applicable
law. If you are not the intended addressee, nor authorized to receive for the intended addressee,
you are hereby notified that you may not use, copy, disclose or distribute to anyone the message or
any information contained in the message. If you have received this message in error, please
immediately advise the sender by reply email, and delete the message. Thank you. | 