From owner-freebsd-security Wed Mar 7 17:48:37 2001 Delivered-To: freebsd-security@freebsd.org Received: from alchemistry.net (alchemistry.net [160.79.102.254]) by hub.freebsd.org (Postfix) with ESMTP id CDE1837B719 for ; Wed, 7 Mar 2001 17:48:34 -0800 (PST) (envelope-from mail@krel.org) Received: from [192.168.0.1] (helo=ilya) by alchemistry.net with asmtp (TLSv1:RC4-MD5:128) (Exim 3.21 #6) id 14apXe-000E7C-00 for freebsd-security@freebsd.org; Wed, 07 Mar 2001 20:48:34 -0500 Message-ID: <013c01c0a771$e80f3e30$0100a8c0@ilya> From: "Ilya" To: References: <5FE9B713CCCDD311A03400508B8B301305F47C8A@bdr-xcln.is.matchlogic.com> Subject: vpn vs natd Date: Wed, 7 Mar 2001 20:48:42 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org As far as i know there is no way to make vpn work through many-to-one nat. Only many-tomany will work. I currently have at home one-to-many (windows clients through freebsd router), now that i need vpn, i got a second public ip. Is it somehow possible to setup that all truffic from certin private ip on my lan would go out as using my new ip? which i guess will reside on same network card, whoch hosts current public ip. is it also possible to do without breaking the config i have now? so i am thinking, many-to-one nat for all windows clients except one, and many-to-many for only one specific private ip. how can i do it? thx a lot. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message