From owner-freebsd-questions Tue Oct 9 14: 3:33 2001 Delivered-To: freebsd-questions@freebsd.org Received: from cluttered.com (w024.z064002058.sjc-ca.dsl.cnc.net [64.2.58.24]) by hub.freebsd.org (Postfix) with ESMTP id 65B2537B401 for ; Tue, 9 Oct 2001 14:03:28 -0700 (PDT) Received: from orgasmotron.cluttered.com (jsd [10.10.10.3]) by cluttered.com (Postfix) with ESMTP id 9B331C984E for ; Tue, 9 Oct 2001 14:03:30 -0700 (PDT) Message-Id: <4.3.2.7.2.20011009140006.00b822d8@10.10.10.1> X-Sender: jsd@10.10.10.1 X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Tue, 09 Oct 2001 14:02:59 -0700 To: freebsd-questions@freebsd.org From: Jon Drukman Subject: VPN + NATD = possible? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG i was searching the freebsd archives for info on this but i am unclear what the deal is. i have a windows 2000 box trying to use vpn. my freebsd box provides ipfw and natd. i allowed the gre protocol through ipfw, and i set up a port redirect for port 1723. it doesn't seem to connect though. i read somewhere about vpn's that use packet checksums to verify that the data hasn't been tampered with, and since natd messes with the packet headers, that would throw off the checksums. i'm not sure if that has anything to do with this. we're using a nortel vpn in case that matters. any advice? i need to be able to run the vpn through my freebsd box... (or is there some way i can run vpn software ON the freebsd box and connect from my windows box through it?) -jsd- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message