From owner-freebsd-net Sat Jul 20 4:47:36 2002 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 41C0B37B405 for ; Sat, 20 Jul 2002 04:47:33 -0700 (PDT) Received: from mail.dada.it (mail2.dada.it [195.110.96.69]) by mx1.FreeBSD.org (Postfix) with SMTP id B7D3043E72 for ; Sat, 20 Jul 2002 04:47:30 -0700 (PDT) (envelope-from ale@unixmania.net) Received: (qmail 18744 invoked from network); 20 Jul 2002 11:46:07 -0000 Received: from unknown (HELO libero.sunshine.ale) (195.110.114.252) by mail.dada.it with SMTP; 20 Jul 2002 11:46:07 -0000 Received: by libero.sunshine.ale (Postfix, from userid 1001) id 1E5805FA4; Sat, 20 Jul 2002 13:46:09 +0200 (CEST) Date: Sat, 20 Jul 2002 13:46:09 +0200 From: Alessandro de Manzano To: net@freebsd.org Subject: IPSec NAT Traversal ? Message-ID: <20020720134609.A41761@libero.sunshine.ale> Reply-To: Alessandro de Manzano Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i X-Operating-System: FreeBSD 4.6-STABLE Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello! I would setup an IPSec VPN between my home network and company's one. On both ends I've FreeBSD 4.x servers. On server side I've a bunch of public static IP addresses and on client (home) side I've an ADSL connection with one static IP address. Such IP is assigned to the router which also is NATting the traffic, as usual. This situation is not IPSec compatible, but I've been told that SSH Inc. sell a "NAT Traversal Toolkit" compatbile with IPSec VPNs. Its whitepaper tells this NAT-T solution is an IETF draft (draft-stenberg-ipsec-nat-traversal-02 , Feb 2001) so I wonder if there already are some free, public alternatives to the SSH Inc. ones... Thanks in advance for your hints ! -- bye! Ale To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message