Bastien, I just gave it a try with Windows 7 and it needs an ipsec.conf with main auth "hmac-sha1" enc "3des" group modp2048 \ quick auth "hmac-sha1" enc "aes" \
I've only tested it locally on the same network so no NAT involved, I've not tried it from the internet behind a firewall/router that is doing NAT. Daniel ==== Original message from Bastien Ceriani at 23-7-2014 9:41 > Daniel, > > Good. > Did you try to connect an Windows (Seven or Eight ?) client. Your VPN > server is working on your frontend firewall/router or on a internal server > behind a firewall ? > > Regards, > > > On Tue, Jul 22, 2014 at 8:16 PM, Daniel Polak <dan...@sys.nl> wrote: > >> I got everything to work based on the Undeadly article and the >> information in this thread. >> >> A few remarks: >> - when connecting with an iPhone 3des in ipsec.conf should be replaced >> by aes >> - uncomment the line with net.pipex.enable=1 in sysctl.conf >> - add npppd_flags="" to rc.conf.local so npppd is started automatically >> at system boot >> >> And one question: >> Do we really need to allow ah in pf.conf? I have it working with just esp. >> >> >> Daniel >> ==== Original message from mxb at 22-7-2014 13:15 >>> As been the original author of undeadly.org article I can state that >> info in is stil partially valid, except npppd.conf part.
