On Wed, Oct 17, 2007 at 03:30:54PM -0500, Steve Pribyl wrote:
> However,  what exactly does net.inet.ip.redirect control?

It controls whether the network stack sends redirect. I've used a
similar configuration in the past which worked fine. But the NetBSD
VPN gateway kept sending ICMP redirect packets to any system which
tried to send packets to the VPN client. Those ICMP redirects told
the client to send packets to the VPN gateway instead of the
VPN gateway. Yes, that doesn't make any sense.

You can perhaps try whether this is still the case with an uptodate
version of NetBSD and submit a bug report which I forgot at that time.

	Kind regards

-- 
Matthias Scheler                                  http://zhadum.org.uk/