From owner-freebsd-isp  Sun Nov 19 19:12:50 2000
Delivered-To: freebsd-isp@freebsd.org
Received: from misery.sdf.com (misery.sdf.com [204.244.213.49])
	by hub.freebsd.org (Postfix) with ESMTP id 4607237B479
	for <freebsd-isp@freebsd.org>; Sun, 19 Nov 2000 19:12:46 -0800 (PST)
Received: from tom (helo=localhost)
	by misery.sdf.com with local-esmtp (Exim 2.12 #1)
	id 13xgiN-0002s2-00; Sun, 19 Nov 2000 18:29:51 -0800
Date: Sun, 19 Nov 2000 18:29:48 -0800 (PST)
From: Tom Samplonius <tom@sdf.com>
To: Mike Tancsa <mike@sentex.net>
Cc: Evren Yurtesen <eyurtese@turkuamk.fi>, freebsd-isp@FreeBSD.ORG
Subject: Re: any VPN daemon?
In-Reply-To: <ss2h1t4iestndng88etmrnf19less0339j@4ax.com>
Message-ID: <Pine.BSF.4.05.10011191827430.1138-100000@misery.sdf.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Sun, 19 Nov 2000, Mike Tancsa wrote:

> On 18 Nov 2000 10:13:39 -0500, in sentex.lists.freebsd.isp you wrote:
> 
> >is there any good VPN daemons which supports LAN to LAN
> >connection in which a modem doesnt get involved? 
> 
> ipsec is built into FreeBSD 4.x and works quite well.

  Well building IPSec tunnels on FreeBSD 4.x is rather arcane and not very
well documented.  For instance, there is nothing on how IPSec and ipfw
interact.  Which subsystem gets the packet first?  ipfw or IPSec?
Building a system with ipfw, natd and IPSec tunnels isn't an easy thing to
do.

> 	---Mike
> Mike Tancsa  (mdtancsa@sentex.net)		
> Sentex Communications Corp,   		
> Waterloo, Ontario, Canada
> "Given enough time, 100 monkeys on 100 routers 
> could setup a national IP network." (KDW2)
> 


Tom



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message