Date: Wed, 6 May 2015 01:28:59 -0500 From: Jim Thompson <jim@netgate.com> To: Mason Loring Bliss <mason@blisses.org> Cc: freebsd-net@freebsd.org Subject: Re: IPsec on a LAN? Message-ID: <7D6A77D9-9EFE-471D-97BA-E1D854AE23B1@netgate.com> In-Reply-To: <20150506061029.GG4033@blisses.org> References: <20150506061029.GG4033@blisses.org>
next in thread | previous in thread | raw e-mail | index | archive | help
What you=E2=80=99re looking for is =E2=80=9Ctransport mode=E2=80=9D = IPsec. Dan Langille wrote this 14 years ago, it may still be accurate. http://www.freebsddiary.org/ipsec.php = <http://www.freebsddiary.org/ipsec.php>; This is a bit more recent (14 months ago), and should be easy to adapt = to two FreeBSD hosts: http://www.schmidp.com/2014/01/20/ipsec-between-freebsd-and-mac-osx/ Jim > On May 6, 2015, at 1:10 AM, Mason Loring Bliss <mason@blisses.org> = wrote: >=20 > Hi there! >=20 > I'm trying to find a resource for learning how to go about setting up = IPsec > on an IPv4 LAN. The Handbook and just about every resources I can find = on the > 'net talks about using IPsec to tunnel to another site, but I just = want my > local boxes (or some subset of them) to encrypt traffic to each other. >=20 > My specific desire is to set up NFS between several local machines and = have > it use an encrypted transport. It seems that IPsec is the only game in = town, > and that it's very poorly documented, especially for use on a LAN as = opposed > to for setting up a VPN between sites. I'd love pointers. >=20 > Thank you! >=20 > --=20 > Mason Loring Bliss mason@blisses.org Ewige = Blumenkraft! > awake ? sleep : random() & 2 ? dream : sleep; -- Hamlet, Act III, = Scene I > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7D6A77D9-9EFE-471D-97BA-E1D854AE23B1>