On Wed, Feb 21, 2001 at 10:00:09AM +1100, Stephen Cimarelli wrote:
> * Most users seem to use gif devices to setup the tunnels instead of IPsec
> tunnels, Why?
gif is the name of the device used to implement tunneling.
> What ports/protocols do I need to allow through a firewall to allow gif and
> IPsec to work?
gif isn't a protocol, it's an interface name. Check /etc/protocols
for the protocol number of the AH and ESP protocols, which IPSEC uses
depending on which mode you run it in.
Kris
PGP signature