From owner-freebsd-questions@FreeBSD.ORG Thu Mar 6 10:15:02 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 94B5B1065671; Thu, 6 Mar 2008 10:15:02 +0000 (UTC) (envelope-from xfb52@dial.pipex.com) Received: from mk-outboundfilter-1.mail.uk.tiscali.com (mk-outboundfilter-1.mail.uk.tiscali.com [212.74.114.37]) by mx1.freebsd.org (Postfix) with ESMTP id F1B5B8FC2E; Thu, 6 Mar 2008 10:15:01 +0000 (UTC) (envelope-from xfb52@dial.pipex.com) X-Trace: 55643209/mk-outboundfilter-1.mail.uk.tiscali.com/PIPEX/$INTERNET-ACCEPTED/None/62.31.10.181 X-SBRS: None X-RemoteIP: 62.31.10.181 X-IP-MAIL-FROM: xfb52@dial.pipex.com X-IP-BHB: Once X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AgAAAFJTz0c+Hwq1/2dsb2JhbAAIq3g X-IP-Direction: OUT Received: from 62-31-10-181.cable.ubr05.edin.blueyonder.co.uk (HELO [192.168.23.2]) ([62.31.10.181]) by smtp.pipex.tiscali.co.uk with ESMTP; 06 Mar 2008 10:14:40 +0000 Message-ID: <47CFC40C.8050100@dial.pipex.com> Date: Thu, 06 Mar 2008 10:14:36 +0000 From: Alex Zbyslaw User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-GB; rv:1.7.13) Gecko/20061205 X-Accept-Language: en MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <47CF2B0B.2090905@student.utwente.nl> In-Reply-To: <47CF2B0B.2090905@student.utwente.nl> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Questions Subject: Re: VPN - Which way to go? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Mar 2008 10:15:03 -0000 Alphons "Fonz" van Werven wrote: > Howdy people, > > I need to setup a VPN connection to the university's network. Now, > there's a > chapter in the handbook about "VPN over IPsec" and there seems to be this > thing called OpenVPN in the ports collection. Which is the better way > to go? The handbook still seems only to describe how to do IPSEC over a gif tunnel. I've no idea what the point of that is, but AFAIK, it means you can only use that method to connect two FreeBSD machines. Assuming your university is using IPSEC, then here's a few links I found useful is setting up IPSEC and racoon to connect, in this case, to a Sonic Wall. http://www.mail-archive.com/freebsd-net@freebsd.org/msg19089.html http://www.lacave.net/~fred/racoon/config.html http://www.netbsd.org/docs/network/ipsec/ You could also investigate http://m0n0.ch/wall/ if you want a dedicated firewall that's IPSEC capable. Never tried it myself, though, just found links while investigating IPSEC. --Alex