Date: Thu, 24 Jan 2002 22:17:49 +0100 From: "Dennis Pedersen" <mlists@daydreamer.dk> To: <freebsd-security@freebsd.org> Subject: FreeBSD 4,4 && racoon && tunnel && nat? Message-ID: <02d401c1a51c$9487a730$0301a8c0@dpws>
next in thread | raw e-mail | index | archive | help
Hi! I need to make a VPN tunnel between 2 lokations and i have no posibility of getting a 'real' ipaddress for each of the FreeBSD box's so i need to use nat. But how to i conf gif and setkey? Does my gifconfig include the IP address of the 'wan' NIC on my BSD box or the real ip adress my router was assigned? What about setkey, what ip do i specify there? - the outside nics ip or the ip of the natting router? Another thing that has been bugging me a bit is, do i have to specify anything out of the ordenary in order to one of the box'es to have 2 or more tunnels to the box? spdadd 192.168.2.0/24 192.168.3.0/24 any -P out ipsec esp/tunnel/a.a.a.a-x.x.x.x/require; spdadd 192.168.3.0/24 192.168.2.0/24 any -P in ipsec esp/tunnel/x.x.x.x-a.a.a.a./require; Regards Dennis To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?02d401c1a51c$9487a730$0301a8c0>