From owner-freebsd-questions@FreeBSD.ORG  Sat Jul 24 20:05:36 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6081D16A4CE
	for <freebsd-questions@freebsd.org>;
	Sat, 24 Jul 2004 20:05:36 +0000 (GMT)
Received: from chylonia.3miasto.net (chylonia.3miasto.net [213.192.74.6])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7FB4C43D31
	for <freebsd-questions@freebsd.org>;
	Sat, 24 Jul 2004 20:05:35 +0000 (GMT)
	(envelope-from wojtek@tensor.3miasto.net)
Received: from chylonia.3miasto.net (wojtek@localhost [127.0.0.1])
	i6OK5ajX000395;	Sat, 24 Jul 2004 22:05:36 +0200 (CEST)
	(envelope-from wojtek@tensor.3miasto.net)
Received: from localhost (wojtek@localhost)i6OK5agn000392;
	Sat, 24 Jul 2004 22:05:36 +0200 (CEST)
	(envelope-from wojtek@tensor.3miasto.net)
X-Authentication-Warning: chylonia.3miasto.net: wojtek owned process doing -bs
Date: Sat, 24 Jul 2004 22:05:36 +0200 (CEST)
From: Wojciech Puchar <wojtek@tensor.3miasto.net>
X-X-Sender: wojtek@chylonia.3miasto.net
To: Aaron Siegel <aj@siegel-tech.net>
In-Reply-To: <200407241318.17785.aj@siegel-tech.net>
Message-ID: <20040724220245.E99579@chylonia.3miasto.net>
References: <200407241318.17785.aj@siegel-tech.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: freebsd-questions@freebsd.org
Subject: Re: VPN with multiple offices
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Jul 2004 20:05:36 -0000

> companies who will need temporary access to the network while working on
> larger projects.  In addition to this we would like to give remote access for
> our road warriors from anonymous networks.
>
> For the our offices I believe a tunnel with esp that seems to be the is
> documented in the handbook and many other sites.
>
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html
> http://www.daemonnews.org/200101/ipsec-howto.html
> http://www.usenix.org/publications/library/proceedings/bsdcon02/full_papers/schadow/schadow_html/
>

contrary to what you pointed i will recommend you vtun (ports/net/vtun).

i use it for really many things, works excellent and will have all needed
functionality including compression, encryption and is bandwidth
efficient.