Date: Mon, 22 Apr 2019 10:58:56 -0500 From: Louis Kowolowski <louisk@cryptomonkeys.org> To: Wojciech Puchar <wojtek@puchar.net> Cc: Eugene Grosbein <eugen@grosbein.net>, freebsd-hackers@freebsd.org Subject: Re: openvpn and system overhead Message-ID: <25566D0F-72DF-4EF1-8900-8DD611D03B33@cryptomonkeys.org> In-Reply-To: <alpine.BSF.2.20.1904221731560.76479@puchar.net> References: <alpine.BSF.2.20.1904171707030.87502@puchar.net> <0cc6e0ac-a9a6-a462-3a1e-bfccfd41e138@grosbein.net> <alpine.BSF.2.20.1904191841200.44949@puchar.net> <5CBAB88C.4020402@grosbein.net> <alpine.BSF.2.20.1904221731560.76479@puchar.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Apr 22, 2019, at 10:32 AM, Wojciech Puchar <wojtek@puchar.net> wrote: >=20 >>> well it has to cooperate with multitude of clients like windoze, >>> point&click routers etc. that's why openvpn. >>=20 >> Windows has stock support for IPSec with and without L2TP and has no = stock openvpn, so IPSec is more preferable. >=20 > can IPSEC VPN work over nat? even freebsd-freebsd case. >=20 > I cannot find any tutorial how to do this. -ish You must forward udp/4500 to the host and IPSec will negotiate a tunnel = successfully. https://tools.ietf.org/html/rfc3947 = <https://tools.ietf.org/html/rfc3947>; -- Louis Kowolowski louisk@cryptomonkeys.org = <mailto:louisk@cryptomonkeys.org> Cryptomonkeys: = http://www.cryptomonkeys.com/ <http://www.cryptomonkeys.com/>; Making life more interesting for people since 1977
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?25566D0F-72DF-4EF1-8900-8DD611D03B33>