From owner-freebsd-questions Sun Jun 3 13:43:23 2001 Delivered-To: freebsd-questions@freebsd.org Received: from snapper.lansters.com (21-155-124-64.dsl.lan2wan.com [64.124.155.21]) by hub.freebsd.org (Postfix) with ESMTP id 95CF137B403 for ; Sun, 3 Jun 2001 13:43:19 -0700 (PDT) (envelope-from lucky@lansters.com) Received: from lucky (lucky.lansters.com [10.1.0.2]) by snapper.lansters.com (8.11.3/8.9.3) with SMTP id f53KhJA02264 for ; Sun, 3 Jun 2001 16:43:20 -0400 (EDT) (envelope-from lucky@lansters.com) From: "Jason T. Luttgens" To: Subject: IPSec with ipfw and ipnat (oh my) Date: Sun, 3 Jun 2001 16:42:50 -0400 Message-ID: <000001c0ec6d$c1fa4a50$0200010a@lucky> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG What is the latest information on getting a scenario like this working: Two FreeBSD firewall/gateway machines, each with one routable internet ip and a lan with reserved ip space behind them. I am attempting to establish an encrypted IPSec-based VPN between the lans that are in reserved IP space, as well as run ipnat for the lans to access the normal internet and run ipfw rules to block bad traffic. I have seen discussion that this does not work under FreeBSD and that the OpenBSD guys have a good solution with the enc interface for IPSec-related traffic. I am having no success in getting a setup like this to work under FreeBSD. Does anyone know what I have to do to get this working? Thanks, Jason To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message