From owner-freebsd-questions Fri May 17 5:13: 4 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail1.ing.nl (mail1.ing.nl [145.221.93.2]) by hub.freebsd.org (Postfix) with ESMTP id 432DD37B406 for ; Fri, 17 May 2002 05:12:59 -0700 (PDT) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Content-Class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: IPsec / KAME newbie wants to play VPN admin. Date: Fri, 17 May 2002 14:12:44 +0200 Message-ID: <6C506EA550443D44A061432F1E92EA4C012DC3@ing.com> X-MS-Has-Attach: Importance: normal X-MS-TNEF-Correlator: Thread-Topic: IPsec / KAME newbie wants to play VPN admin. thread-index: AcH9nCZPYOzj+5soRjigcLLlknSeQg== From: "Carroll, D. (Danny)" To: X-OriginalArrivalTime: 17 May 2002 12:12:44.0613 (UTC) FILETIME=[26860F50:01C1FD9C] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello, I am looking at testing IPsec in both tunneling mode (for a VPN) and transport mode. I thought it was about time I got my head around this. To make matters a little more complicated my VPN partner is a Linux man (can only make it more interesting right? ;-) Anyway, before I dive into it too deeply there are a few basic questions I have about it all. I am only interested in IPv4 at the moment. To use IPsec with FreeBSD does that mean I'll be using the KAME implementation? Is it easy to get a Linux FreeS/WAN and FreeBSD VPN to work. Since I do not want to break my firewall, will it work through a natd gateway? What about a natd gateway and a linux ?? nat gateway? Am I right in assuming that racoon simply sets up the key's / authtication but the kernel via gif0 does the encrypting/decrypting?? What is the difference between isakmpd.conf and racoon.conf, or for that matter racoon and isakmpd?? Are they the same but racoon is newer? -D -----------------------------------------------------------------=0A= ATTENTION:=0A= The information in this electronic mail message is private and=0A= confidential, and only intended for the addressee. Should you=0A= receive this message by mistake, you are hereby notified that=0A= any disclosure, reproduction, distribution or use of this=0A= message is strictly prohibited. Please inform the sender by=0A= reply transmission and delete the message without copying or=0A= opening it.=0A= =0A= Messages and attachments are scanned for all viruses known.=0A= If this message contains password-protected attachments, the=0A= files have NOT been scanned for viruses by the ING mail domain.=0A= Always scan attachments before opening them.=0A= ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message