From owner-freebsd-security Wed Nov 1 6:45:38 2000 Delivered-To: freebsd-security@freebsd.org Received: from proxy.centtech.com (moat.centtech.com [206.196.95.10]) by hub.freebsd.org (Postfix) with ESMTP id C1DCB37B4C5 for ; Wed, 1 Nov 2000 06:45:33 -0800 (PST) Received: (from smap@localhost) by proxy.centtech.com (8.8.4/8.6.9) id IAA00909 for ; Wed, 1 Nov 2000 08:45:28 -0600 (CST) Received: from sprint.centtech.com(10.177.173.31) by proxy.centtech.com via smap (V2.0/2.1+anti-relay+anti-spam) id xma000906; Wed, 1 Nov 00 08:45:12 -0600 Received: from centtech.com (shiva [10.177.173.77]) by sprint.centtech.com (8.9.3+Sun/8.9.3) with ESMTP id IAA12766 for ; Wed, 1 Nov 2000 08:45:12 -0600 (CST) Message-ID: <3A002C78.7F3537D4@centtech.com> Date: Wed, 01 Nov 2000 08:45:12 -0600 From: Eric Anderson Reply-To: anderson@centtech.com Organization: Centaur Technology X-Mailer: Mozilla 4.73 [en] (X11; U; Linux 2.2.14-5.0smp i686) X-Accept-Language: en MIME-Version: 1.0 To: security Subject: pipsecd - thru port Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm using ipsec (with pipsecd on two FreeBSD 4.1 machines) to build a VPN. I need to go thru a firewall, but I don't know which ports to forward thru, or if this is even possible.. So here's what I want to do: ----- ----- ------ | A | -----|FW |------| B | ----- ----- ------ machine A is a freebsd box inside the firewall (FW), B is the freebsd box outside the firewall attempting to connect to A thru FW, in other words, B thinks its connecting to FW port XX, but FW forwards port XX to port XX on A, connecting the vpn thru the FW.. I currently have VPN's set up with linux boxen with the SSH+PPP method, which works alright, it would just work a LOT better with ipsec and such.. So, what ports do i need to forward on FW to make this all work? -- ------------------------------------------------------------------------------- Eric Anderson anderson@centtech.com Centaur Technology (512) 418-5792 What does "it" mean in the sentence "What time is it?"? ------------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message