From owner-freebsd-questions@FreeBSD.ORG Wed Sep 24 12:44:07 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C5CDD16A4B3 for ; Wed, 24 Sep 2003 12:44:07 -0700 (PDT) Received: from atlantech.net (mail3.atlantech.net [209.183.205.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1D04E43FAF for ; Wed, 24 Sep 2003 12:44:04 -0700 (PDT) (envelope-from srenna@vdbmusic.com) Received: from [65.197.254.5] (account srenna@vdbmusic.com) by atlantech.net (CommuniGate Pro WebUser 4.1.3) with HTTP id 56431617; Wed, 24 Sep 2003 15:44:03 -0400 From: To: Mike Tancsa , synrat , freebsd-questions@freebsd.org X-Mailer: CommuniGate Pro WebUser Interface v.4.1.3 Date: Wed, 24 Sep 2003 15:44:03 -0400 Message-ID: In-Reply-To: <6.0.0.22.0.20030924154020.05518ed0@209.112.4.2> MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 8bit Subject: Re: vpn X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Sep 2003 19:44:07 -0000 X-List-Received-Date: Wed, 24 Sep 2003 19:44:07 -0000 You know, at my last company we had made a push to get something like this working using ipsec(racoon) and poptop or mpd. All we could do is run into walls over and over again. We were using 4.8 stable. there are a few howtos out there, but they don't go into enough detail. We eventually just gave up because we had too much other stuff to do. The first thing I'd recommend is to start learning how to make a CA....I actually wrote a doc on using openssl in this fashion if you're interested. On Wed, 24 Sep 2003 15:42:37 -0400 Mike Tancsa wrote: > At 03:37 PM 24/09/2003, synrat wrote: > >I'm trying to find vpn software for freebsd that > supports pptp. > > mpd works well. (/usr/ports/net/mpd) > > > >I don't care much for ipsec, unless I have no other > choice. > > Its better to use ipsec when its configured correctly. > Its been and is well scrutinized in the BSD world. Be > careful about the allure of "Its easier so I will use it" > http://www.mit.edu:8008/bloom-picayune/crypto/14238 > > > ---Mike > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"