From owner-freebsd-isp  Tue Nov 12  1:49:55 2002
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A34A237B401
	for <freebsd-isp@freebsd.org>; Tue, 12 Nov 2002 01:49:54 -0800 (PST)
Received: from mail.yazzy.org (mail.yazzy.org [80.232.16.67])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1371A43E77
	for <freebsd-isp@freebsd.org>; Tue, 12 Nov 2002 01:49:47 -0800 (PST)
	(envelope-from yazzy@yazzy.org)
Received: by mail.yazzy.org (Postfix, from userid 1001)
	id 9671FA847; Tue, 12 Nov 2002 02:27:04 +0100 (CET)
Date: Tue, 12 Nov 2002 02:27:04 +0100
From: "Marcin M. Jessa" <yazzy@yazzy.org>
To: freebsd-isp@freebsd.org
Subject: Ipsec
Message-ID: <20021112012704.GA56571@yazzy.org>
Reply-To: "Marcin M. Jessa" <yazzy@yazzy.org>
Mail-Followup-To: freebsd-isp@freebsd.org
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Organization: ezUnix.org
X-Operating-System: FreeBSD 4.7-RELEASE i386  2:16AM  up 20 days, 20:18, 1 user, load averages: 0.00, 0.00, 0.00
X-Editor: Vim http://www.vim.org/
X-Mailer: Mutt http://www.mutt.org/
X-Info: http://www.ezUnix.org/
User-Agent: Mutt/1.5.1i
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org

Hi guys.

I have a firewall box at work with racoon on it.
It worked perfectly together with another freebsd firewall placed at my home.
This was based on a pre-shared key authentication method with specified IP's.
I want to replace a VPN box at work with windows on it used bye some of my co-workers to connect to their desktops.
The windows box accepts connections from any host since people who connect to it do not have static IP's.
How could I achieve it? How can I run racoon for any host with a proper key. 
How to set up gif device and how to allow any LAN subnet to connect.
One more thing. I would like some of the servers connected to my box to have their own pass and propably rules.
This is becouse I'd like to change the pre-shared key for my "plain" users every month and leave the secret key for the servers.
How can one do that?

Cheers,
YazzY

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message