From owner-freebsd-questions@FreeBSD.ORG Thu Dec 4 17:17:25 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 73BEB16A4CE for ; Thu, 4 Dec 2003 17:17:25 -0800 (PST) Received: from rwcrmhc12.comcast.net (rwcrmhc12.comcast.net [216.148.227.85]) by mx1.FreeBSD.org (Postfix) with ESMTP id 63A1243FB1 for ; Thu, 4 Dec 2003 17:17:24 -0800 (PST) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from be-well.no-ip.com ([66.30.200.37]) by comcast.net (rwcrmhc12) with ESMTP id <2003120501172301400dmnpne>; Fri, 5 Dec 2003 01:17:24 +0000 Received: by be-well.no-ip.com (Postfix, from userid 1147) id 7BC7177; Thu, 4 Dec 2003 20:17:23 -0500 (EST) Sender: lowell@be-well.ilk.org To: PRZ References: <9310752411.20031204133832@prz.tu-berlin.de> From: Lowell Gilbert Date: 04 Dec 2003 20:17:23 -0500 In-Reply-To: <9310752411.20031204133832@prz.tu-berlin.de> Message-ID: <44ad68vza4.fsf@be-well.ilk.org> Lines: 24 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-questions@freebsd.org Subject: Re: Ipsec bridging on FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: freebsd-questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Dec 2003 01:17:25 -0000 Kifah Abbad writes: > Hi everyone, > > I am working on my thesis , and i found some difficulties doing some > tasks of the project on openbsd so i am planning to move to freebsd.I > want to ask some questions, concerning tasks of the project, and i > hope someone would confirm or not. > > 1. Does freebsd offer s reasonable way for divert socket? i heard it > could be done using netgraph...It should be also possible to catch > ethernet frames (not only IP), since this would be happening on an > ipsec bridge. > > 2.This brings me to following point: Is there a similar solution for > ipsec-bridging, like explained in the example of "man brconfig" of > openbsd? > > 3.IS it possible to do MAC-Adress spoofing on a freeBSD machine? Sounds like you want the Berkeley Packet Filter. http://www.freebsd.org/cgi/man.cgi?query=bpf Should be available on OpenBSD too, if my memory serves.