From owner-freebsd-questions@FreeBSD.ORG  Wed Aug 25 23:23:00 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5F4F816A4CE
	for <questions@freebsd.org>; Wed, 25 Aug 2004 23:23:00 +0000 (GMT)
Received: from smtp.knology.net (smtp.knology.net [24.214.63.101])
	by mx1.FreeBSD.org (Postfix) with SMTP id C2E2F43D5A
	for <questions@freebsd.org>; Wed, 25 Aug 2004 23:22:59 +0000 (GMT)
	(envelope-from dkelly@HiWAAY.net)
Received: (qmail 443 invoked by uid 0); 25 Aug 2004 23:22:59 -0000
Received: from user-69-73-60-132.knology.net (HELO ?10.0.0.68?) (69.73.60.132)
  by smtp3.knology.net with SMTP; 25 Aug 2004 23:22:59 -0000
In-Reply-To: <20040825225159.GA6903@fajita.org>
References: <20040825214441.GB3936@fajita.org>
	<06CE76FD-F6E8-11D8-95C5-000393BB56F2@HiWAAY.net>
	<20040825225159.GA6903@fajita.org>
Mime-Version: 1.0 (Apple Message framework v619)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Message-Id: <B0D3B91B-F6ED-11D8-95C5-000393BB56F2@HiWAAY.net>
Content-Transfer-Encoding: 7bit
From: David Kelly <dkelly@HiWAAY.net>
Date: Wed, 25 Aug 2004 18:22:54 -0500
To: Lewis Thompson <lewiz@fajita.org>
X-Mailer: Apple Mail (2.619)
cc: FreeBSD-questions <questions@freebsd.org>
Subject: Re: Roaming tunnel (IPSEC or something).
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Aug 2004 23:23:00 -0000


On Aug 25, 2004, at 5:51 PM, Lewis Thompson wrote:

> On Wed, Aug 25, 2004 at 05:42:21PM -0500, David Kelly wrote:
>> On Aug 25, 2004, at 4:44 PM, Lewis Thompson wrote:
>>
>>> I'm wondering if it's possible to have a ``roaming tunnel'' so I have
>>> local-like access on my laptop wherever I am.
>>
>> Have not done it myself but IIRC the key is to define an "anonymous"
>> host in raccoon.conf.
>
> I spotted that existed... but I have gif tunnels set up and firewall
> rules... how do these work?

As I said, "I haven't done it" but Google "+anonymous +raccoon +ipsec" 
turns up a couple of interesting references:

PIX IPSec VPN to FreeBSD - Static IP
http://bshell.com/projects/freebsd_pix/static.html

and I remember using this one way back when I last set up a VPN tunnel 
with FreeBSD: http://asherah.dyndns.org/~josh/ipsec-howto.txt

A prettier version at:
http://www.daemonnews.org/200101/ipsec-howto.html

--
David Kelly N4HHE, dkelly@HiWAAY.net
========================================================================
Top-posters will not be shown the honor of a reply.