From owner-freebsd-isp Fri Aug 8 07:28:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA21122 for isp-outgoing; Fri, 8 Aug 1997 07:28:21 -0700 (PDT) Received: from horst.bfd.com (horst.bfd.com [204.160.242.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA21115 for ; Fri, 8 Aug 1997 07:28:19 -0700 (PDT) Received: from harlie.bfd.com (bastion.bfd.com [204.160.242.14]) by horst.bfd.com (8.8.5/8.7.3) with SMTP id HAA29507; Fri, 8 Aug 1997 07:27:57 -0700 (PDT) Date: Fri, 8 Aug 1997 07:27:57 -0700 (PDT) From: "Eric J. Schwertfeger" To: Wm Brian McCane cc: Alan Batie , Jakob Alvermark , isp@FreeBSD.ORG Subject: Re: Secure connection In-Reply-To: <199708080507.AAA10485@bmccane.uit.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 8 Aug 1997, Wm Brian McCane wrote: > this one little location costs more than the other 4 combined. Anyway, what I > am wanting to do is give them a VPN, with a low-grade of encryption. (Nothing > fancy, the tunneling will slow down the curious, and nothing stops the > determined ;). I was wondering if anyone has a way to do this in FreeBSD so I > don't have to recommend using NT. I pictured something like the ipdivert/natd > combination, except that the daemon I divert to would set up a connection to > the far end and pass ALL messages along to him. Any suggestions? iptunnel (I've got two versions of it, ask me if you can't find one) to establish the tunnelling, and skip to encrypt it. iptunnel allows something quite like a VPN, where all traffic is routed to a single machine, which encapsulates the packets, passes them off to a single machine at the other end, that breaks them out and passes on the packets. skip is AT&T software that encrypts all traffic between two machines, which should work in this case, though I've neve tried it.