While trying to get a Win2K client (belonging to William Dixon) to talk
FreeSWAN at the last IETF for the wavesec stuff (see www.wavesec.org), we
learnt something really strange.
  MS didn't implement tunnel mode. The only way they can build a tunnel is
by creating a PPTP interface and using transport mode.
  This may not be true, but it is hard for me to imagine Dixon got this
wrong.

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [