Date: Thu, 12 Jun 2003 18:08:01 -0400 (EDT) From: Justin <justin@othius.com> To: Lupe Christoph <lupe@lupe-christoph.de> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Impossible to IPfilter this? Message-ID: <20030612180120.B54558@ike.othius.com> In-Reply-To: <20030612184124.GD26930@lupe-christoph.de> References: <20030607111540.GC4812@lupe-christoph.de> <20030612132138.A26888@shell.gsinet.sittig.org> <20030612184124.GD26930@lupe-christoph.de>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 12 Jun 2003, Lupe Christoph wrote: > I've used ipsec0 on Linux for similar purposes, and I would like to see > an IPSec interface in FreeBSD as well. As I said, I could not get GIF to > work with FreeS/WAN, so I'm stuck with the current interface-deprived > IPSec implementation. We haven't gotten to the point of applying ipsec on the traffic between hosts yet (don't worry, only pings and ssh so far anyway) but a friend and I have a gif <-> iptun tunnel setup between a FreeBSD 4.8-RELEASE (plus patches) and a 2.4x kernel with FreeS/WAN. Works fine. Seattle Wireless group had a handy little shell script that the guy at the Linux end based his commands off of. We'll see if problems arise when ipsec is applied to all traffic between the hosts, but I don't anticipate that will cause any problems. http://www.seattlewireless.net/index.cgi/IpTunnel - -Justin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+6PnGdYQBw9Ox1VgRAvTpAJ4nJjrUry6AHdzvwTS5/02WyE9FYACgjDFS GhzSLreKf8i5Ye9TiU5slQY= =jsO1 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030612180120.B54558>