From owner-freebsd-questions Tue Dec 5 20:49: 2 2000 From owner-freebsd-questions@FreeBSD.ORG Tue Dec 5 20:49:00 2000 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from patrol.bitsurf.net (c158457-a.frmt1.sfba.home.com [24.9.169.120]) by hub.freebsd.org (Postfix) with ESMTP id 3F4B937B400 for ; Tue, 5 Dec 2000 20:49:00 -0800 (PST) Received: (from mharo@localhost) by patrol.bitsurf.net (8.11.1/8.11.1) id eB64mu995406 for questions@freebsd.org; Tue, 5 Dec 2000 20:48:56 -0800 (PST) (envelope-from mharo) Date: Tue, 5 Dec 2000 20:48:56 -0800 From: Michael Haro To: questions@freebsd.org Subject: IPsec VPN w/ RIP security? Message-ID: <20001205204855.A95374@area51.fremont.ca.us> Reply-To: mharo@area51.fremont.ca.us Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: mharo@patrol.bitsurf.net Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi, I have a cable modem and have used IPsec to setup a VPN between my home network, office WAN and another location I life. I want to use RIP to discover all the routes but I'm worried about random RIP broadcasts on the cable line. With Freeswan, Linux's IPsec implementation, the IPsec traffic goes over the virtual ipsecX interface and thus limiting RIP traffic to that interface and the internal Ethernet interface is easy. Is there any way I can setup something secure like that in FreeBSD? I'm trying to mess with creating the IPsec link and also using the gifX interfaces, but I have yet to be successful. Any pointers would be great. Is there a better place for me to ask this question? Thanks, Michael To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message