Date: Mon, 2 Jun 2008 12:27:41 -0400 From: "Bob McConnell" <rvm@CBORD.com> To: "alexus" <alexus@gmail.com>, <freebsd-questions@freebsd.org> Subject: RE: VPN (IPSEC) Message-ID: <FF8482A96323694490C194BABEAC24A002D043EA@Email.cbord.com> In-Reply-To: <6ae50c2d0806020913v2c7665b8nc3673e30cb8627cc@mail.gmail.com> References: <6ae50c2d0805311649p14863af3y43af39fb4aa2cc8a@mail.gmail.com> <6ae50c2d0806020913v2c7665b8nc3673e30cb8627cc@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Behalf Of alexus > >anyone? > > >On Sat, May 31, 2008 at 7:49 PM, alexus <alexus@gmail.com> wrote: >> Hello, >> >> I'm trying to establish a VPN tunnel over internet, I read a >> http://www.freebsd.org/doc/en/books/handbook/ipsec.html on how to set >> it up, I'm some what strangeling if my setup will work at all. >> IIRC, IPSEC cannot work through a NAT connection. NAT changes header fields that IPSEC uses for packet authentication. So the receiver cannot validate the content of the modified header. Bob McConnell
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?FF8482A96323694490C194BABEAC24A002D043EA>