From owner-freebsd-isp  Thu Nov 12 13:16:23 1998
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id NAA22639
          for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:16:23 -0800 (PST)
          (envelope-from owner-freebsd-isp@FreeBSD.ORG)
Received: from super-g.inch.com (super-g.com [207.240.140.161])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA22615;
          Thu, 12 Nov 1998 13:16:15 -0800 (PST)
          (envelope-from spork@super-g.com)
Received: from localhost (localhost [127.0.0.1])
	by super-g.inch.com (8.8.8/8.8.5) with SMTP id QAA11548;
	Thu, 12 Nov 1998 16:10:51 -0500 (EST)
Date: Thu, 12 Nov 1998 16:10:51 -0500 (EST)
From: spork <spork@super-g.com>
X-Sender: spork@super-g.inch.com
To: "Jason T. Nelson" <jtn@eboai.org>
cc: isp@FreeBSD.ORG, questions@FreeBSD.ORG
Subject: Re: VPN, an off topic question
In-Reply-To: <19981112124934.A9667@hindenburg.eboai.org>
Message-ID: <Pine.BSF.4.00.9811121610110.4395-100000@super-g.inch.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Has anyone seen a good "VPN FAQ" for FBSD?  Any step-by-step info for the
KAME IPSec implementation?

Charles

---
Charles Sprickman
spork@super-g.com
--- 
                     "...there's no idea that's so good you can't 
                      ruin it with a few well-placed idiots." 

On Thu, 12 Nov 1998, Jason T. Nelson wrote:

> Archie Cobbs (archie@whistle.com) scribbled endlessly:
> > This is what PPTP does.. it's like PPP where you replace the word
> > "modem" with the word "Internet". M$oft sells client and server software
> > (the clients are free -- download "microsoft dial-up networking 1.3").
> > 
> > I don't know of any freely available FreeBSD software for doing PPTP.
> > Using an NT server is proabaly the quickest way to get it working.
> 
> Ugh. PPTP is riddled with holes; search for "PPTP security" on any 
> search engine to find out why. Right now, I'm using the KAME IPsec
> stack to connect two FreeBSD boxes using IPsec over IPv4. You get
> an additional benefit of getting IPv4 over IPv4 (IPIP) tunneling
> as well if you don't want the overhead of IPsec.
> 
> -- 
> Jason T. Nelson <jtn@eboai.org>
> BOFH Extraordiaire
> http://www.eboai.org/~jtn/
> disclaimer: My opinions are my own. Don't bother my employer about them.
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-isp" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message