IPSEC in tunnel mode ( possible? )

Lachlan lachlan at fatpanda.net
Wed Oct 29 14:17:24 PST 2003 

I'm not sure if my guess is correct. But instead of using windows over
ipsec, i would use 2 FreeBSD boxes.


eg,

Client Host -- [ipsec on bsd] -- (( wirless )) -- [ipsec on bsd to
decrypt] -- (( internet ))


Not sure if that's what you're trying to do, was a little hard to
understand.


If that is the case, there is a nice article on freebsd diary that covers
this pretty well.

http://www.freebsddiary.org/ipsec.php

Regards,
	Lachlan

-----Original Message-----
From: owner-freebsd-isp at freebsd.org
[mailto:owner-freebsd-isp at freebsd.org]On Behalf Of Nucleo de Pesquisa e
Desenvolvimento
Sent: Thursday, October 30, 2003 7:16 AM
To: freebsd-net at freebsd.org
Cc: freebsd-isp at freebsd.org
Subject: IPSEC in tunnel mode ( possible? )


   Hi everyone,

   I know it is kind an off-topic question but maybe another network admin
have already faced the following:

      client--[__ipsec__]--gw--[__ip__]--internet

   I, trying to secure a wireless link, want to have my clients using
ipsec on the segment between the gateway gw and the machine itself even
when the traffic is to the internet and not only to the gateway ( what
works fine in transport mode anyway ). The clients are windows
machines.
   Accordingly to Microsoft 252735 tunnel is possible when a windows is
acting as a gateway, not our scenario where machines are only
clients...
   Any one could point me to some url or send me keywords I should look
for please? If things won´t work with ipsec I´ll do it with MPD... but
I still should have ask it here.

   Thanks in advance ( and sorry for the cross posting ),



--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 Paiva, Gilson de        Domingos Martins
 mailto:npd at el.com.br    Brazil
 http://www.el.com.br/   E&L Producoes de Software
 http://www.FreeBSD.org/ FreeBSD: The Power to Serve
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
_______________________________________________
freebsd-isp at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe at freebsd.org"




_______________________________________________
freebsd-isp at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe at freebsd.org"

More information about the freebsd-net mailing list