FreeBSD as a VPN Client Gateway ...
Matthew Grooms
mgrooms at shrew.net
Wed Mar 22 22:17:52 UTC 2006
All,
If anyone would like to use FreeBSD as a VPN gateway but have the
usual Win2K/XP clients to support, here is a free software product that
may be of interest ...
http://www.shrew.net/download
The VPN Client was designed to work with ipsec-tools + FreeBSD as
the gateway but others such as NetBSD have been tested. Features include
multiple XAuth user authentication modes, automatic client network
configuration, remote network topology download, NAT Traversal, IKE
fragmentation and transport pre-fragmentation ( ala NetBSD 3.0 ). The
latter three are useful for clients behind NAT devices or broken
DSL/Cable routers that drop large or fragmented UDP packets.
If you are interested in using NAT-T, you should have a look at
Yvans kernel patch which offers everything but transport
pre-fragmentation support ...
http://ipsec-tools.sf.net/freebsd6-natt.diff
Feedback and bug reports are appreciated ( off this list ).
-Matthew
More information about the freebsd-net
mailing list