Re: IPSEC, isakmpd, tunnel/transport encapsulation...

2006-11-04 Thread chris scott
I tried to setup something exactly like you did. I could do it fine with freebsd boxes as I would do it via username not ip. Never really got the problem sorted for windows though. I ended up using openVPN instead. I would seriously recommend you try this solution as its far easier to setup. Be

Re: 2 isp's, one LAN and need to divide traffic.

2004-02-06 Thread chris scott
should be easy enough to do. You will probably need to have two instances of natd running, one for each interface. e.g. /sbin/natd -a x -p 8868 /sbin/natd -a y -p 8869 where x and y are the ips of the interfaces you are using, you could probably use the -n option and -dynamic options if you are o

Re: IPFW.

2003-10-19 Thread chris scott
here is a simple firewall that should do what you need and be statefull they key thing to remember is not to add any stateful stuff ( keep-state rules ) before the divert rule for natd as it really screws things up. Note i have put in a fairly open static rule for ssh before the divert rule, you ma