> > IPSec and NAT don't play together
>
> I've set other pepole up (granted with comercial products) to do this very
> thing just fine.
>
> I'm not using AH, just ESP, so nat'ing the IP address of the outer header
> will not break anything.
Ok, let me rephrase it. IPSec and NAT don't play together on FreeBSD. natd
does not know how to masqeurade ESP packets.
Blaz Zupan, Medinet d.o.o, Linhartova 21, 2000 Maribor, Slovenia
E-mail: [EMAIL PROTECTED], Tel: +386-2-320-6320, Fax: +386-2-320-6325
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
