Date: Wed, 27 Aug 2003 08:40:27 +0200 From: "Oldach, Helge" <Helge.Oldach@atosorigin.com> To: hilman firmansyah <hilman@nap.net.id>, freebsd-net@freebsd.org Subject: RE: Gif IPTunnel networkA-to-networkB not work Message-ID: <D2CFC58E0F8CB443B54BE72201E8916EF41A70@dehhx005.hbg.de.int.atosorigin.com>
next in thread | raw e-mail | index | archive | help
> From: hilman firmansyah [mailto:hilman@nap.net.id] > NB : I still dont touch the IPSEC and encrypted section > ,since in the fbsd > handbooks said to make an encrypted section i must have the 2 networks > connected. Is this right? You must have the networks connected (on the public side), but when using IPSec your gif tunnel won't really be used. It is just sort of a "placeholder" to get the routing correct. I am using a similar setup to your's (FreeBSD talking IPSec with a Cisco router) using the GIF tunnel pointing to a bogus remote address. You could essentialy achieve the same without GIF using static ARP entries, claiming that the MAC address of your machine's default gateway has the tunnel destination IP. Helge
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?D2CFC58E0F8CB443B54BE72201E8916EF41A70>