Date: Tue, 10 Dec 2002 08:33:01 -0800 From: "Brian" <bri@sonicboom.org> To: "Jeff Walters" <jwalters_1@yahoo.com>, <freebsd-questions@FreeBSD.ORG> Subject: Re: IPsec on a NAT gateway Message-ID: <014101c2a069$d17a2b10$2324200a@me> References: <825B5EDE-0C5B-11D7-A833-00039342A52C@yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Theres good info on http://www.samag.com/documents/s=7121/sam0205a/sam0205a.htm, including some ipsec linkage at the bottom. Brian ----- Original Message ----- From: "Jeff Walters" <jwalters_1@yahoo.com> To: <freebsd-questions@FreeBSD.ORG> Sent: Tuesday, December 10, 2002 8:21 AM Subject: IPsec on a NAT gateway > At home I have a FreeBSD gateway working nicely for NAT and firewall. > One of the machines behind this firewall is an OS X iBook running > through a WEP-enabled Airport base station in bridged mode (i.e. it > only bridges the wireless and the ethernet). WEP has known problems, > and I'd like to secure the link between the iBook and the FreeBSD > firewall against snooping or malicious neighbors, etc. > > I think that IPsec is the closest thing to an answer, however after > much digging through setkey man pages, the FreeBSD handbook, and other > HOWTO web pages nothing clearly describes this configuration. This is > not really IPSec transport mode, because it's only secure between host > and gateway not host and host, and it's not tunnel mode because I'm not > joining two LANs. Has anyone done this? > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?014101c2a069$d17a2b10$2324200a>