From owner-freebsd-security Thu Jan 9 2:34:15 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6307137B401 for ; Thu, 9 Jan 2003 02:34:12 -0800 (PST) Received: from server1.cis-consultants.com (ATuileries-106-2-1-64.abo.wanadoo.fr [193.252.218.64]) by mx1.FreeBSD.org (Postfix) with ESMTP id AAB0843F18 for ; Thu, 9 Jan 2003 02:34:10 -0800 (PST) (envelope-from ronan.lenozach@cis-consultants.com) Received: from CIS2KS01.cis-consultants (mail.cis-consultants [192.168.1.26]) by server1.cis-consultants.com (Postfix) with ESMTP id 239A4D3E6 for ; Thu, 9 Jan 2003 12:29:36 +0100 (CET) Received: from CIS2KS01.cis-consultants ([192.168.1.26]) by CIS2KS01.cis-consultants with Microsoft SMTPSVC(5.0.2195.5329); Thu, 9 Jan 2003 11:34:08 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Subject: IPsec in tunnel mode between Windows 2000 and FreeBSD content-class: urn:content-classes:message X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4920.2300 Date: Thu, 9 Jan 2003 11:34:08 +0100 Message-ID: <0690CF9CCB18EE4EB57E4E26A0CEC7BB0EF212@cis2ks01.cis-consultants> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: IPsec in tunnel mode between Windows 2000 and FreeBSD Thread-Index: AcK3yqQB9+Jm7E7yTmW8Oe65rnfCcQ== From: "Ronan LE NOZACH" Importance: normal To: X-OriginalArrivalTime: 09 Jan 2003 10:34:08.0513 (UTC) FILETIME=[A4279710:01C2B7CA] Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi everyone ! =20 I have to build an IPsec VPN between a Windows 2000 server (final host) = and a network behind a FreeBSD IPFW firewall with KAME/racoon. I want to = build this VPN with IPsec in tunnel mode and without L2TP ot IP in IP = encapsulation. After several tests, I managed IPsec communications : * between Windows 2000 and Linux-FreeS/Wan in transport mode and tunnel = mode * between Windows 2000 and FreeBSD-KAME in transport mode =20 But I didn't succeed to establish communications with IPsec in tunnel = mode between Windows 2000 and FreeBSD (actually, I managed IPsec = communications with IPsec in tunnel mode but only when both the Windows = 2000 server and the FreeBSD firewall are final hosts, which is not = sufficient because I want hosts in the network behind the firewall to be = able to communicate with the Windows 2000 server too !). So I'd like to = know if anyone has some experience or information about establishing = IPsec in tunnel mode between Windows 2000 and FreeBSD. If such = communication is not possible, does anyone know if IP in IP = encapsulation is possible with Windows 2000 ? =20 Ronan Le Nozach CIS Consultants Paris France ------------------------------------------------------------------ Ce message et les eventuelles pieces jointes sont confidentiels ou = appartenant a CIS Consultants et etablis a l'intention exclusive de ses = destinataires. Toute divulgation, utilisation, diffusion ou reproduction = (totale ou partielle) non-autorisee de ce message, ou des informations = qu'il contient, est interdite. Tout message electronique est susceptible = d'alteration. CIS Consultants decline toute responsabilite au titre de = ce message s'il a ete modifie ou falsifie. ------------------------------------------------------------------ This e-mail and any attachments contain confidential information = belonging to CIS Consultants and are intended solely for the addressees. = Any unauthorized disclosure, use, dissemination or copying (either whole = or partial) of this e-mail, or any information it contains, is = prohibited. E-mails are susceptible to alteration. Neither CIS = Consultants shall be liable for the message if altered or falsified. ------------------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message