From owner-freebsd-net Thu Apr 26 1:51: 4 2001 Delivered-To: freebsd-net@freebsd.org Received: from Awfulhak.org (awfulhak.demon.co.uk [194.222.196.252]) by hub.freebsd.org (Postfix) with ESMTP id B96BF37B423 for ; Thu, 26 Apr 2001 01:51:01 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from hak.lan.Awfulhak.org (root@hak.lan.Awfulhak.org [172.16.0.12]) by Awfulhak.org (8.11.3/8.11.3) with ESMTP id f3Q8oQ317537; Thu, 26 Apr 2001 09:50:26 +0100 (BST) (envelope-from brian@lan.Awfulhak.org) Received: from hak.lan.Awfulhak.org (brian@localhost [127.0.0.1]) by hak.lan.Awfulhak.org (8.11.3/8.11.3) with ESMTP id f3Q8pfM50159; Thu, 26 Apr 2001 09:51:41 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Message-Id: <200104260851.f3Q8pfM50159@hak.lan.Awfulhak.org> X-Mailer: exmh version 2.3.1 01/18/2001 with nmh-1.0.4 To: "Matthew Emmerton" Cc: "Brian Somers" , "Gunther Schadow" , freebsd-net@FreeBSD.ORG, brian@Awfulhak.org Subject: Re: VPN tunnel with DHCP ... In-Reply-To: Message from "Matthew Emmerton" of "Wed, 25 Apr 2001 23:15:06 EDT." <008101c0cdff$e7185520$1200a8c0@gsicomp.on.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 26 Apr 2001 09:51:40 +0100 From: Brian Somers Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Now, back to Gunther's request - could you do IPSec over PPP over TCP? But of course :-) You can even do NAT in this scenario if required - as the NAT will happen before the data is encapsulated in the tcp stream that ipsec's policies are mangling. > -- > Matt Emmerton -- Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message