Some ISP's want to sell these services. Actually, by providing VLAN's
the "differentiate" themselves from the pack. However they are usually
not working with computer freaks/professionals/hackers etc. So
"restricting" VLAN access works most of the time for them.
We don't like that and that is why we have vtun, httptunnel, icmptunnel
etc...
/marco
----- Original Message -----
From: "Hakan Olsson" <ho@crt.se>
To: "Jyri Hovila" <jyri.hovila@iki.fi>
Cc: <misc@openbsd.org>
Sent: Friday, February 01, 2002 8:17 AM
Subject: Re: Alternatives for IPSec?
> On Fri, 1 Feb 2002, Jyri Hovila wrote:
> ...
> > I'm having a problem with one ISP who does not allow customers to
use
> > ESP protocol.
> ...
>
> While it's beside the point for your question, is the ISP even aware
of
> how utterly nonsensical this restriction is (especially from a
security
> point of view), and how easy it is to "circumvent"? Sounds like it's
a
> political and/or imaginary-economical issue.
>
> Kind of like one of my previous employers that permits telnet, ftp,
http
> etc, but not SSH. (SSH over port 80 didn't take long to setup, no...)
>
> /H
>
> --
> Håkan Olsson <ho@crt.se> (+46) 708 437 337 Carlstedt
Research
> Unix, Networking, Security (+46) 31 701 4264 & Technology
AB
|