On Tue, Nov 02, 2004 at 01:40:27PM +0100, Jeremie Le Hen wrote:
> > Yep, that seems to be exactly what I need. I don't suppose there are
> > any plans to implement something similar in FreeBSD anytime soon?
> > Considering I'm so close to getting this to work it's frustrating to
> > think that I wo
> If anyone is interested in the full details of this setup please let
> me know and I can provide them. The majority of tweaking had to do
> with getting the right kernel setup though - after which things worked
> mostly as expected.
>
> Thanks again for everyones help.
Yes, it would be very int
All,
Thank you for your help. I managed to get this working. First, I
had to compile the kernel to use the FAST_IPSEC option, which
apparently changes processing so that traffic goes via gif0 (packet
captures only see incoming traffic to gif0 however) - the
IPSEC_FILTERGIF option was not suffici
> Yep, that seems to be exactly what I need. I don't suppose there are
> any plans to implement something similar in FreeBSD anytime soon?
> Considering I'm so close to getting this to work it's frustrating to
> think that I would need to migrate to OpenBSD to have this
> functionality and uproot e
On Fri, 29 Oct 2004 16:14:11 +0200, Jeremie Le Hen <[EMAIL PROTECTED]> wrote:
> IIRC, I read somewhere this is precisely the reason why enc(4) was
> written.
Yep, that seems to be exactly what I need. I don't suppose there are
any plans to implement something similar in FreeBSD anytime soon?
Con
> Rather than a "problem" with ipfw however, I think I've got a
> fundamental problem with how to do this. If I understand correctly, in
> order for natd to "reverse" a divert rule (translate the destination
> IP back to the original IP on return traffic) the packet has to come
> through the same i
On Thu, 28 Oct 2004 21:47:24 +0400, Nickolay A. Kritsky
<[EMAIL PROTECTED]> wrote:
> Hello Aaron,
>
> Please make sure that you have option IPSEC_FILTERGIF in your kernel.
> See LINT and -net archives for more details.
Thanks for the hint - and that makes more sense, however I think I'm
still in
Hello Aaron,
Please make sure that you have option IPSEC_FILTERGIF in your kernel.
See LINT and -net archives for more details.
Thursday, October 28, 2004, 9:38:19 PM, Aaron Nichols wrote:
AN> All,
AN>I didn't get any hits on freebsd-questions so I'm re-posting this
AN> here. Any help is muc
