From owner-freebsd-security Mon Apr 2 8:23:17 2001 Delivered-To: freebsd-security@freebsd.org Received: from cithaeron.argolis.org (bgm-24-94-35-22.stny.rr.com [24.94.35.22]) by hub.freebsd.org (Postfix) with ESMTP id 86AEB37B71F for ; Mon, 2 Apr 2001 08:23:14 -0700 (PDT) (envelope-from piechota@argolis.org) Received: from localhost (piechota@localhost) by cithaeron.argolis.org (8.11.3/8.11.3) with ESMTP id f32FN9H27889; Mon, 2 Apr 2001 11:23:10 -0400 (EDT) (envelope-from piechota@argolis.org) X-Authentication-Warning: cithaeron.argolis.org: piechota owned process doing -bs Date: Mon, 2 Apr 2001 11:23:09 -0400 (EDT) From: Matt Piechota To: Ian Cartwright Cc: Subject: Re: IPSec VPN Client behind Firewall In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 1 Apr 2001, Ian Cartwright wrote: > I have been trying to install the Nortel Contivity Extranet Client on a > Windows 2000 box behind my FreeBSD firewall. The firewall is FreeBSD-STABLE > (as of about amonth ago) with ipfw and nat running. After, scanning as many > newsgroups, mailing lists and web pages as I could find on the subject, I > have still not found a way to do this... I have seen a couple discussion in > this newsgroup and a (hopefully) promising patch to ipfilter that may help > me (and whoever else is out there with my problem)... Depending on your setup, this could work for you: I too use the Nortel Client and a FreeBSD-STABLE firewall on my home network. My setup uses private internel IPs and one public IP from my cable provider. I set up natd to forward all packets from $nortel_switch_ip to the internal box. It's not ideal, but it does work. If you want more info, let me know. -- Matt Piechota Finger piechota@emailempire.com for PGP key AOL IM: cithaeron To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message