From owner-freebsd-questions@FreeBSD.ORG  Thu Mar 31 15:49:27 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id BA22D16A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 31 Mar 2005 15:49:27 +0000 (GMT)
Received: from shiba.meibin.jp (shiba.meibin.jp [211.18.246.253])
	by mx1.FreeBSD.org (Postfix) with SMTP id 10FBF43D1F
	for <freebsd-questions@freebsd.org>;
	Thu, 31 Mar 2005 15:49:26 +0000 (GMT)
	(envelope-from lukek@meibin.net)
Received: (qmail 67166 invoked by uid 1011); 31 Mar 2005 15:48:27 -0000
Received: from 192.168.10.8 by shiba.meibin.jp (envelope-from
	<lukek@meibin.net>, uid 1009) with qmail-scanner-1.24-st-qms 
	(clamdscan: 0.83/705. spamassassin: 3.0.2. perlscan: 1.24-st-qms.  
	Clear:RC:0(192.168.10.8):SA:0(-4.9/3.0):. 
	Processed in 3.363291 secs); 31 Mar 2005 15:48:27 -0000
X-Spam-Status: No, hits=-4.9 required=3.0
X-Antivirus-MEIBIN-Mail-From: lukek@meibin.net via shiba.meibin.jp
X-Antivirus-MEIBIN: 1.24-st-qms (Clear:RC:0(192.168.10.8):SA:0(-4.9/3.0):.
	Processed in 3.363291 secs Process 67158)
Received: from unknown (HELO ?192.168.10.8?) (lukek@meibin.net@192.168.10.8)
  by shiba.meibin.jp with SMTP; 31 Mar 2005 15:48:23 -0000
Date: Fri, 01 Apr 2005 00:46:06 +0900
From: Luke Kearney <lukek@meibin.net>
To: "Monah Baki" <mbaki@whywire.net>
In-Reply-To: <20050331143013.M21871@whywire.net>
References: <20050331143013.M21871@whywire.net>
Message-Id: <20050401004334.38B5.LUKEK@meibin.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver. 2.07.01
cc: freebsd-questions@freebsd.org
Subject: Re: IPsec How-to
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Mar 2005 15:49:27 -0000


On Thu, 31 Mar 2005 10:36:01 -0400
"Monah Baki" <mbaki@whywire.net> spake thus:

> Hi all,
> 
> I'm reading the FreeBSD handbook, the vpn over ipsec how-to section, but how
> do I apply it if I have 1 freebsd machine with 1 NIC, and multiple XP boxes in
> a LAN. All communications nfs, ftp etc etc to that Freebsd machine must be
> encrypted.
> Can it be done? is there any how to for this scenario somewhere?
> 
> 
> Thank you

Hi,
Yes it is possible though I won't claim to have done it myself but you
would probably be best to start off by looking into a program like
racoon or something then set up each machine with the private keys or
certificates. I believe XP is pretty easy setup when it comes to IPSec.

Good Luck

LukeK