From owner-freebsd-questions@FreeBSD.ORG Sat Feb 22 09:59:21 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3DFFEEC9 for ; Sat, 22 Feb 2014 09:59:21 +0000 (UTC) Received: from ms-10.1blu.de (ms-10.1blu.de [178.254.4.101]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id ECA8F15DF for ; Sat, 22 Feb 2014 09:59:20 +0000 (UTC) Received: from [89.204.130.60] (helo=tiny-r255948) by ms-10.1blu.de with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.76) (envelope-from ) id 1WH9Mc-0004DS-GK; Sat, 22 Feb 2014 10:59:18 +0100 Received: from tiny-r255948 (localhost [127.0.0.1]) by tiny-r255948 (8.14.7/8.14.3) with ESMTP id s1M9xGip001882; Sat, 22 Feb 2014 10:59:16 +0100 (CET) (envelope-from guru@unixarea.de) Received: (from guru@localhost) by tiny-r255948 (8.14.7/8.14.3/Submit) id s1M9xFmK001881; Sat, 22 Feb 2014 10:59:15 +0100 (CET) (envelope-from guru@unixarea.de) X-Authentication-Warning: tiny-r255948: guru set sender to guru@unixarea.de using -f Date: Sat, 22 Feb 2014 10:59:14 +0100 From: Matthias Apitz To: Farzin Falahati Subject: Re: IPSec Message-ID: <20140222095913.GA1855@tiny-r255948> References: <20140222084125.GA1567@tiny-r255948> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: X-Operating-System: FreeBSD 10.0-CURRENT r235646 (i386) User-Agent: Mutt/1.5.21 (2010-09-15) X-Con-Id: 51246 X-Con-U: 0-guru X-Originating-IP: 89.204.130.60 Cc: freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list Reply-To: Matthias Apitz List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Feb 2014 09:59:21 -0000 El día Saturday, February 22, 2014 a las 01:14:19PM +0330, Farzin Falahati escribió: > thank you Matthias for your reply but vpnc is a client used for accessing > remote user to a LAN via ipsec tunnel while i want to have an ipsec tunnel > between two lan networks. i mean i want to connect two seperated remote lan > to each other via an ipsec tunnel over the internet. in order to do that, > i'm using ipsec-tool (racoon) to create ipsec tuunel between my lan and a > cisco router which is member of another lan. > is it possible to have an ipsec tunnel between two lan (from freebsd in > lan1 to a cisco router in lan2)? Ofc, it is a client. But, once you have the connection established, the rest is just a matter of routing, i.e. behind your FreeBSD could be any kind of LAN; just enable gateway via rc.conf and proper routings. matthias -- Sent from my FreeBSD netbook Matthias Apitz, , http://www.unixarea.de/ f: +49-170-4527211 UNIX since V7 on PDP-11, UNIX on mainframe since ESER 1055 (IBM /370) UNIX on x86 since SVR4.2 UnixWare 2.1.2, FreeBSD since 2.2.5