Hi, by mistake I didn't replied to the mailing list. Here's my mail again:
>> Hi, >> >> this setup works for me (replaced with your IPs): >> >> on client: >> >> ike esp from 192.168.1.200 to 0.0.0.0/0 peer 192.168.1.1 >> >> on router: >> >> ike esp from 0.0.0.0/0 to 192.168.1.200 >> >> Both packets to the outside world an in my local network are encrypted. >> >> Read also ipsec.conf(5) to edit your pf.conf right. Bye Jochen
