Date: Sat, 27 Jan 2001 20:50:45 +0100 From: "Henk Wevers" <henk@home.cg.nu> To: <freebsd-ipfw@FreeBSD.ORG> Subject: RE: IPSEC tunnelling Message-ID: <MPEPKFEAILKHINDACAIOCEFKCBAA.henk@home.cg.nu> In-Reply-To: <3A6EFA76.17540.17FDF1@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
Ipsec VPN tunnel's are working fine with ipnat. http://FreeBSD.cg.nu/ipsec.html Henk -----Original Message----- From: owner-freebsd-ipfw@FreeBSD.ORG [mailto:owner-freebsd-ipfw@FreeBSD.ORG]On Behalf Of Bruno Miguel Sent: woensdag 24 januari 2001 16:53 To: freebsd-ipfw@FreeBSD.ORG Cc: The Babbler; freebsd-ipfw@FreeBSD.ORG Subject: Re: IPSEC tunnelling > > I'm using IPSec tunnel mode, with ESP, but no authentication. I'm also not > > using AH. > > Tunnel mode is troublesome to mix with NAT. AH is impossible to run > through NAT. I tried using a skipto rule when packets from local network tried to reach the other local network... skipping the divert rule. To no avail.. I was trying to use tunnel mode, only esp. I wonder if someone has done it..... i normally use ipfilter, but the ipfw divert rule being able to be bypassed by a skipto rule made me try ipfw. It didn't work..... when I setup a 10.x.x.x. network it worked..... but it was nattin' 192.168.x.x network. I wonder what went wrong. ...:-=>> The freaking Mail Band <<=-:... hununu@netcabo.pt D.E.Q. @ I.S.T. - Portugal To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MPEPKFEAILKHINDACAIOCEFKCBAA.henk>