From owner-freebsd-net@FreeBSD.ORG  Fri Feb 13 11:19:11 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 43F8016A4CE
	for <freebsd-net@freebsd.org>; Fri, 13 Feb 2004 11:19:11 -0800 (PST)
Received: from smtp3.mmedia.is (smtp3.mmedia.is [217.151.160.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BF8C343D1D
	for <freebsd-net@freebsd.org>; Fri, 13 Feb 2004 11:19:10 -0800 (PST)
	(envelope-from baldur@foo.is)
Received: from smtp.mmedia.is (smtp.mmedia.is [217.151.160.9])
	i1DJJ9u5018445
	for <freebsd-net@freebsd.org>; Fri, 13 Feb 2004 19:19:09 GMT
Received: from tesla.foo.is (postfix@tesla.foo.is [217.151.166.96])
	by smtp.mmedia.is (8.11.7/1.0.0) with ESMTP id i1DJJ8C15236
	for <freebsd-net@freebsd.org>; Fri, 13 Feb 2004 19:19:08 GMT
Received: from germanium.foo.is (germanium.foo.is [192.168.1.1])
	by tesla.foo.is (Postfix) with ESMTP id BC89CA960
	for <freebsd-net@freebsd.org>; Fri, 13 Feb 2004 19:19:07 +0000 (GMT)
From: Baldur Gislason <baldur@foo.is>
To: freebsd-net@freebsd.org
Date: Fri, 13 Feb 2004 19:19:06 +0000
User-Agent: KMail/1.5.2
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200402131919.06395.baldur@foo.is>
Subject: VPN with FreeBSD using some form of encryption
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Feb 2004 19:19:11 -0000

I have a home network with FreeBSD machines and a laptop running FreeBSD.
The laptop connects to various networks but I'd like to access my home 
machines from the laptop, the home machines are behind a freebsd nat 
firewall.
I've been using mpd for quite a while, doing a PPTP link from my laptop to 
home but it doesn't offer any useful encryption, and the encryption it claims 
to offer doesn't seem to work.
Hence, limiting what I can do over the link without fear of being sniffed.
I'd like being able to dial in from anywhere, yet have an encrypted link. What 
are my options?
I've read about the IPSEC tunneling support but it seems to me that it's 
limited to static tunnels.

Baldur