From owner-freebsd-isp@FreeBSD.ORG Wed Oct 29 12:15:44 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D67516A4CE; Wed, 29 Oct 2003 12:15:44 -0800 (PST) Received: from srv00.el.com.br (srv00.el.com.br [200.179.165.123]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0D96E43FAF; Wed, 29 Oct 2003 12:15:43 -0800 (PST) (envelope-from npd@el.com.br) Received: from intranet.el.com.br (srv00.el.com.br [200.179.165.123]) by srv00.el.com.br (elsmtp) with SMTP id E7CEF70E4C; Wed, 29 Oct 2003 18:15:39 -0200 (BRST) Received: from 172.72.12.252 (SquirrelMail authenticated user npd) by intranet.el.com.br with HTTP; Wed, 29 Oct 2003 18:15:40 -0200 (BRST) Message-ID: <1545.172.72.12.252.1067458540.squirrel@intranet.el.com.br> Date: Wed, 29 Oct 2003 18:15:40 -0200 (BRST) From: "Nucleo de Pesquisa e Desenvolvimento" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 Importance: Normal cc: freebsd-isp@freebsd.org Subject: IPSEC in tunnel mode ( possible? ) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Oct 2003 20:15:44 -0000 Hi everyone, I know it is kind an off-topic question but maybe another network admin have already faced the following: client--[__ipsec__]--gw--[__ip__]--internet I, trying to secure a wireless link, want to have my clients using ipsec on the segment between the gateway gw and the machine itself even when the traffic is to the internet and not only to the gateway ( what works fine in transport mode anyway ). The clients are windows machines. Accordingly to Microsoft 252735 tunnel is possible when a windows is acting as a gateway, not our scenario where machines are only clients... Any one could point me to some url or send me keywords I should look for please? If things wonŽt work with ipsec IŽll do it with MPD... but I still should have ask it here. Thanks in advance ( and sorry for the cross posting ), -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Paiva, Gilson de Domingos Martins mailto:npd@el.com.br Brazil http://www.el.com.br/ E&L Producoes de Software http://www.FreeBSD.org/ FreeBSD: The Power to Serve =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-