From owner-freebsd-doc@FreeBSD.ORG  Sat Mar 27 14:59:01 2004
Return-Path: <owner-freebsd-doc@FreeBSD.ORG>
Delivered-To: freebsd-doc@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 17FB616A4CE; Sat, 27 Mar 2004 14:59:01 -0800 (PST)
Received: from smtp.nildram.co.uk (smtp.nildram.co.uk [195.112.4.54])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A847243D31; Sat, 27 Mar 2004 14:58:59 -0800 (PST)
	(envelope-from arivanov@sigsegv.cx)
Received: from gondor (arivanov.gotadsl.co.uk [213.208.103.208])
	by smtp.nildram.co.uk (Postfix) with ESMTP
	id E0DCD25D214; Sat, 27 Mar 2004 22:58:53 +0000 (GMT)
Received: from gondor.sigsegv.cx ([192.168.3.6] ident=aivanov)
	by gondor with esmtp (Exim 3.36 #1 (Debian))
	id 1B7MlV-0005ER-00; Sat, 27 Mar 2004 22:58:57 +0000
From: Anton Ivanov <arivanov@sigsegv.cx>
To: Anton Ivanov <ai1@ipaccess.com>
In-Reply-To: <3FF5C74C.6030909@ipaccess.com>
References: 
	<B9F8B2B0AB64B8469DA467A654DC33951DA603@EXCHANGE.campus.stcloudstate.edu>
	<3FF5C74C.6030909@ipaccess.com>
Content-Type: text/plain
Message-Id: <1080428337.19969.7.camel@gondor>
Mime-Version: 1.0
X-Mailer: Ximian Evolution 1.4.5 
Date: Sat, 27 Mar 2004 22:58:57 +0000
Content-Transfer-Encoding: 7bit
cc: nik@freebsd.org
cc: "Pratt, Benjamin E." <bepratt@stcloudstate.edu>
cc: doc@FreeBSD.org
Subject: Re: Incomplete Documentation??
X-BeenThere: freebsd-doc@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: aivanov@sigsegv.cx
List-Id: Documentation project <freebsd-doc.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-doc>
List-Post: <mailto:freebsd-doc@freebsd.org>
List-Help: <mailto:freebsd-doc-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 27 Mar 2004 22:59:01 -0000

Hi all, 

	Sorry for the obscenely long delay between the previous message and
this.

	I have started to compile a combined HowTo based on my own operational
experience which covers IPSEC with BSD on one end and the "usual
suspects" on the other as well as a number of RAS scenarios including
PPTP, OpenVPN and others.

	I will be happy to hear comments and I will be happy if material from
it will be used to everyone's benefit in the HandBook. 

It is available at:

http://www.sigsegv.cx/FreeBSD-WIN2K-VPN-HOWTO-New.html

	It is a work in progress about half the way where it is supposed to be
(highly optimistic take on it actually).

	I am going on holiday on tuesday so I may not be able to read my email
every day. I will definitely look through any suggestions and amendments
and add them after coming back on the 6th.

Brgds,

A.


On Fri, 2004-01-02 at 19:32, Anton Ivanov wrote:
> Bill Moran wrote:
> 
> > Pratt, Benjamin E. wrote:
> >
> >> Hello -
> >>
> >> I'm writing in regards to the FreeBSD Handbook section "VPN over IPsec"
> >> found at
> >> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html.
> >>
> >> It seems to me the documentation is incomplete and I'm just writing to
> >> verify this.  My reasons for believing the documentation is incomplete
> >> are:
> >>
> >> 1) "This article presents a number of scenarios, and strategies for
> >> implementing a VPN for each scenario."
> >>
> >>     I only see one scenario for implementing a VPN.
> >>
> >> 2) "3. Configure additional software on the FreeBSD gateways, to allow
> >> Windows machines to see one another across the VPN."
> >>
> >>     I see the first two "stages" of implementing the first scenario
> >> but not the third.
> >
> >
> > Oddly enough, I'm seeing the exact same thing in my quest to understand
> > IPsec. ;)
> >
> >> I came to the handbook, which has been incredibly helpful in many other
> >> instances, to try to find out how to create an IPsec VPN between an end
> >> user's machine, running either Windows 2000/XP or FreeBSD, and a remote
> >> network, as would be done in a traveling user, remote access from home,
> >> or wireless security scenario.  I'm sure many others have set this up
> >> but the first place I go to for FreeBSD documentation is the handbook.
> >
> >
> > http://www.sigsegv.cx/FreeBSD-WIN2K-IPSEC-HOWTO.html
> >
> > Seems pretty good. 
> 
> It is a bit out of date. Frankly, I need to go through it and update it 
> with some recent info. Also, I have some more info around on interfacing 
> to FW1, cisco and other systems, just have not had time to properly 
> compile it.
> 
> >
> > Is there any reason why this couldn't be incorporated into the handbook?
> > If a committer will back me up (with a promise to commit ;), I'll do the
> > legwork of converting it to docbook (as well as some editing ...) 
> 
> I think it is also more of a question of maintaining it. I think you 
> should ask the maintainers for the poptop, mpd and racoon ports if they 
> will be willing to look (at least to some extent) after their sections.
> 
> Cheers,
> 
> A.
> 
> >
> >