From owner-freebsd-net@FreeBSD.ORG Thu Apr 7 16:15:07 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4C0FA16A4CE for ; Thu, 7 Apr 2005 16:15:07 +0000 (GMT) Received: from cwb.pacific.net.hk (cwb.pacific.net.hk [202.14.67.92]) by mx1.FreeBSD.org (Postfix) with ESMTP id 69A3F43D45 for ; Thu, 7 Apr 2005 16:15:06 +0000 (GMT) (envelope-from jmok@attglobal.net) Received: from [192.168.16.50] (154.159.17.210.fixed.pacific.net.hk [210.17.159.154]) by cwb.pacific.net.hk with ESMTP id j37GF4Ou007519 for ; Fri, 8 Apr 2005 00:15:05 +0800 (CST) Message-ID: <42555C87.7030700@attglobal.net> Date: Fri, 08 Apr 2005 00:15:03 +0800 From: John Mok User-Agent: Mozilla Thunderbird 1.0.2 (Windows/20050317) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Subject: FreeBSD Firewall + NAT Traversal + IPsec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Apr 2005 16:15:07 -0000 Hi, I'm new to FreeBSD. Is it possible make a FreeBSD box with firewall + NAT, such that client PC(s) from the NATed internal network could connect to a VPN gateway on the Internet :- client PC ----- FreeBSD Firewall + NAT ---- Internet ---- IPsec VPN gateway 192.168.x.x/16 (e.g. Checkpoint FW-1) (VPN client) I hope someone could help to advise what software is required on the FreeBSD box to NAT traversal work and where to get the HOWTO(s)? Thanks a lot. John Mok