Date: 30 Apr 2003 14:50:44 -0400 From: Lowell Gilbert <freebsd-security-local@be-well.no-ip.com> To: Guy Middleton <guy@obstruction.com> Cc: freebsd-security@freebsd.org Subject: Re: how to configure a FreeBSD firewall to pass IPSec? Message-ID: <44k7dbn7jv.fsf@be-well.ilk.org> In-Reply-To: <20030430094537.A20710@chaos.obstruction.com> References: <20030430094537.A20710@chaos.obstruction.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Guy Middleton <guy@obstruction.com> writes: > I have a FreeBSD box acting as a firewall and NAT gateway > > I would like to set it up to transparently pass IPSec packets -- I have > an IPSec VPN client running on another machine, connecting to a remote network. > > Is there a way to do this? I can't find any hints in the man pages. It's impossible. IPSEC can't be passed through a NAT. The best you could do would be to terminate the tunnel on the gateway itself.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44k7dbn7jv.fsf>