From owner-freebsd-questions Thu Nov 16 15: 9:25 2000 Delivered-To: freebsd-questions@freebsd.org Received: from drawbridge.ctc.com (drawbridge.ctc.com [147.160.99.35]) by hub.freebsd.org (Postfix) with ESMTP id E879F37B4D7 for ; Thu, 16 Nov 2000 15:09:21 -0800 (PST) Received: from server2.ctc.com (server2.ctc.com [147.160.1.4]) by drawbridge.ctc.com (8.10.1/8.10.1) with ESMTP id eAGN9Fk25683 for ; Thu, 16 Nov 2000 18:09:16 -0500 (EST) Received: from ctcjst-mail1.ctc.com (ctcjst-mail1.ctc.com [147.160.34.14]) by server2.ctc.com (8.9.3/8.9.3) with ESMTP id SAA03802 for ; Thu, 16 Nov 2000 18:09:09 -0500 (EST) Received: by ctcjst-mail1.ctc.com with Internet Mail Service (5.5.2650.21) id ; Thu, 16 Nov 2000 18:12:34 -0500 Message-ID: From: "Cameron, Frank" To: "'freebsd-questions@freebsd.org'" Subject: PPP, NAT, VPN Date: Thu, 16 Nov 2000 18:12:32 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Does anyone have any experience with a setup similar to the following? ---------------- ----------------- ppp to internet | Non-routable |---| FreeBSD PPP |------------------{-} | Private LAN | | Gateway (NAT) | | ---------------- ----------------- | ---------------- ------------- | Cisco VPN | | Corporate |--------| Concentrator | | LAN | ---------------- ------------- Ideally normal Internet traffic would just be NATed and sent through the ISP, while certain traffic would go through an IPSec tunnel to the corporate LAN. Currently, I have the BSD box (4.1-STABLE) configured as a PPP NAT gateway for the private LAN using ppp's nat and ipfw. I appreciate any insight anyone can provide. Thanks. Frank J. Cameron Tecnical Intern Concurrent Technologies To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message