Roadmap
The plan is to connect distributed honeynets over an ipsec vpn in order to make the honeynet appear as a contiguous network with multiple hosts. Given that most of us don't have access to 100-200 physical machines or the raw computing power to implement that number of virtual hosts, we are pooling our assets by implementing small numbers of honeypots at various endpoints on the vpn. The vpn is ad-hoc in the sense that not all members must connect to eachother in order to participate. In fact, it is much more likely that islands of honeynets may form based on a mutual level of trust between peers. Then each island can connect if they so choose. The ultimate goal here is to get each group of honeynet administrators to pool their data so that we can analyze the attack patterns.
