On Wed, Feb 21, 2001 at 10:00:09AM +1100, Stephen Cimarelli wrote:

> * Most users seem to use gif devices to setup the tunnels instead of IPsec
> tunnels, Why?

gif is the name of the device used to implement tunneling.

> What ports/protocols do I need to allow through a firewall to allow gif and
> IPsec to work?

gif isn't a protocol, it's an interface name.  Check /etc/protocols
for the protocol number of the AH and ESP protocols, which IPSEC uses
depending on which mode you run it in.

Kris

PGP signature

Reply via email to