Date: Thu, 21 Mar 2002 22:12:49 -0800 (PST) From: Archie Cobbs <archie@dellroad.org> To: Vincent Chen <vctw@yahoo.com> Cc: net@FreeBSD.ORG Subject: Re: IPSec for roaming user? Message-ID: <200203220612.g2M6Cn916951@arch20m.dellroad.org> In-Reply-To: <20020320140353.19403.qmail@web20006.mail.yahoo.com> "from Vincent Chen at Mar 20, 2002 06:03:53 am"
next in thread | previous in thread | raw e-mail | index | archive | help
Vincent Chen writes: > I am trying to figure out how to let roaming users > access internal resource via freebsd as IPsec gateway. > Because they have dynamic IPs. How can I write > security policy to deal with this? Is there any IPsec > client for windows platform available? It depends on the client. racoon supports accepting connections from arbitrary IP addresses. On Win2k you can use the built-in client if you go through the complex configuration required. Even so, you have to reconfigure everytime your IP address changes. Better yet, buy a commercial IPSec client such as Netscreen. > it ok to let ESP packet coming in and out from anywhere? Yes. -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200203220612.g2M6Cn916951>