On Wed, Jul 24, 2002 at 10:45:27AM +0200, Manuel Bouyer wrote:
> On Wed, Jul 24, 2002 at 10:34:41AM +0200, Mattias Karlsson wrote:
> > Well, since A is behind NAT, B can't reach it, but A can reach B
> > without a problem.
> 
> Hum, it's a bit harder then, and you won't be able to use gif.
> You'll need to have A establish a TCP connection with B, and have your tunnel
> run on top of that (with ppp for example).
> 
> The security/ssh-ip-tunnel would be useable here but may not be the more
> efficient for your environnement (it runs on top of ssh, which is good
> for security but you have to pay the ssh overload).
> Maybe net/vtun would be useable, but I never used it so I don't know how it
> runs exactly.

I have used vtun, and it works pretty well.  You have to keep in mind it
has the performance issues of running in userland, but on a fast machine it
is not really an issue. (unless you're tunneling over a high-speed link)

-Andrew