From owner-freebsd-questions@FreeBSD.ORG Sun Feb 23 05:06:40 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 56125537 for ; Sun, 23 Feb 2014 05:06:40 +0000 (UTC) Received: from mail-yk0-x22d.google.com (mail-yk0-x22d.google.com [IPv6:2607:f8b0:4002:c07::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 1113417BE for ; Sun, 23 Feb 2014 05:06:39 +0000 (UTC) Received: by mail-yk0-f173.google.com with SMTP id 10so10778705ykt.4 for ; Sat, 22 Feb 2014 21:06:38 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=6VAgloSTZyRY0bw5YoLFqomwucxzZtS7u00CPVEaRFQ=; b=EUscpgTiIYVn2xAyWzsaUEydyyH3S+QCV3qTCXpu9aoKex1A9q6dpmlsX5WvO25+YP qVrfVu6Ef4RQpdkcURyGoRRw6N97rrA2vtgO2M8hzw6YmQqpPdfoPSPS7Vzn5FReqRwJ TiljnTAdhBmNj53zjwyh7g537k8pNPjWB0vgJv8DCjt634BJ7gnRDhTuQ+Tj+nuMa/x9 ggNHFA+yaOAW8p5hh1opnUqfZzBG9hhKOnZBpyMKAmL7hIhOeMyJnQeScdvxsehkWi2x y6pm3uTsOwK7HLqj7JxEQnxBs9EXcd/Gv8hFMyekj/MNYY4tNVxgEnt8yKpI6Kx+I9Zk 6rIg== MIME-Version: 1.0 X-Received: by 10.236.120.17 with SMTP id o17mr21175289yhh.121.1393131998823; Sat, 22 Feb 2014 21:06:38 -0800 (PST) Received: by 10.170.214.212 with HTTP; Sat, 22 Feb 2014 21:06:38 -0800 (PST) In-Reply-To: <20140222095913.GA1855@tiny-r255948> References: <20140222084125.GA1567@tiny-r255948> <20140222095913.GA1855@tiny-r255948> Date: Sun, 23 Feb 2014 08:36:38 +0330 Message-ID: Subject: Re: IPSec From: Farzin Falahati To: Matthias Apitz Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.17 Cc: freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 23 Feb 2014 05:06:40 -0000 thanks Matthias but you know i should do this for my project and for that i must use ipsec-tools(racoon) to create an ipsec tunnel between my two LANs. so i just want to know if it is possible to create an ipsec tunnel by using racoon between a FreeBSD system and a cisco router. is it possible??? On Sat, Feb 22, 2014 at 1:29 PM, Matthias Apitz wrote: > El d=EDa Saturday, February 22, 2014 a las 01:14:19PM +0330, Farzin Falah= ati > escribi=F3: > > > thank you Matthias for your reply but vpnc is a client used for accessi= ng > > remote user to a LAN via ipsec tunnel while i want to have an ipsec > tunnel > > between two lan networks. i mean i want to connect two seperated remote > lan > > to each other via an ipsec tunnel over the internet. in order to do tha= t, > > i'm using ipsec-tool (racoon) to create ipsec tuunel between my lan and= a > > cisco router which is member of another lan. > > is it possible to have an ipsec tunnel between two lan (from freebsd in > > lan1 to a cisco router in lan2)? > > Ofc, it is a client. But, once you have the connection established, the > rest is just a matter of routing, i.e. behind your FreeBSD could be any > kind of LAN; just enable gateway via rc.conf and proper routings. > > matthias > > -- > Sent from my FreeBSD netbook > > Matthias Apitz, , http://www.unixarea.de/ f: > +49-170-4527211 > UNIX since V7 on PDP-11, UNIX on mainframe since ESER 1055 (IBM /370) > UNIX on x86 since SVR4.2 UnixWare 2.1.2, FreeBSD since 2.2.5 >