From owner-freebsd-questions@FreeBSD.ORG  Thu Jan 18 07:28:50 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: questions@freebsd.org
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 6202516A407
	for <questions@freebsd.org>; Thu, 18 Jan 2007 07:28:50 +0000 (UTC)
	(envelope-from danm@prime.gushi.org)
Received: from prime.gushi.org (prime.gushi.org [72.9.101.130])
	by mx1.freebsd.org (Postfix) with ESMTP id 23BA413C441
	for <questions@freebsd.org>; Thu, 18 Jan 2007 07:28:49 +0000 (UTC)
	(envelope-from danm@prime.gushi.org)
Received: from prime.gushi.org (localhost [127.0.0.1])
	by prime.gushi.org (8.13.8/8.13.8) with ESMTP id l0I7SnlP033038
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <questions@freebsd.org>; Thu, 18 Jan 2007 02:28:49 -0500 (EST)
	(envelope-from danm@prime.gushi.org)
DKIM-Signature: a=rsa-sha1; c=simple/simple; d=prime.gushi.org;
	s=primegushiorg; t=1169105329; bh=uaxo3PW44d2aXa/Epv0PdNjkbU8=;
	h=DomainKey-Signature:
	Received:Date:From:To:Subject:Message-ID:MIME-Version:
	Content-Type; b=g2iw1oYNqnyafOl0KBt2aPfnuXqs+Sn5eHnvU4y9Kx/vLqqWdpg
	lSnAcOsk7lj9O6cKMw7ce9CgJ4gkm+YUQPQ==
DomainKey-Signature: a=rsa-sha1; s=primegushiorg; d=prime.gushi.org; c=nofws;
	q=dns; 
	h=received:date:from:to:subject:message-id:mime-version:content-type;
	b=J7W5s2dISVp/sHL13s/NN7CLPVDej7A+Q8YPm4foyipkqq0pAajxRNj6TiSm8NQ2H
	4b2Q+ICR52jGhBxKNdWag==
Received: (from danm@localhost)
	by prime.gushi.org (8.13.8/8.13.6/Submit) id l0I7SmjK033033;
	Thu, 18 Jan 2007 02:28:48 -0500 (EST) (envelope-from danm)
Date: Thu, 18 Jan 2007 02:28:48 -0500 (EST)
From: "Dan Mahoney, System Admin" <danm@prime.gushi.org>
To: questions@freebsd.org
Message-ID: <20070118022306.Q26349@prime.gushi.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: 
Subject: Transport Mode IPSEC
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jan 2007 07:28:50 -0000

Hey all,

I see the handbook has a nice howto on tunnel mode ipsec.  I just want to 
protect my NFS/NIS traffic between two hosts on a switch (neither NAT'd) 
-- is there a reference as to transport-mode ipsec anywhere, or has anyone 
done it that can outline it?  I would imagine it would be drastically 
simpler than tunnel mode, but I'm not sure where it would break off.

-Dan

--

"A mother can be an inspiration to her little son, change his thoughts,
his mind, his life, just with her gentle hum."

-No Doubt, "Different People", from "Tragic Kingdom"


--------Dan Mahoney--------
Techie,  Sysadmin,  WebGeek
Gushi on efnet/undernet IRC
ICQ: 13735144   AIM: LarpGM
Site:  http://www.gushi.org
---------------------------