how to configure a FreeBSD firewall to pass IPSec?
Lowell Gilbert
freebsd-security-local at be-well.no-ip.com
Wed Apr 30 11:50:50 PDT 2003
Guy Middleton <guy at obstruction.com> writes:
> I have a FreeBSD box acting as a firewall and NAT gateway
>
> I would like to set it up to transparently pass IPSec packets -- I have
> an IPSec VPN client running on another machine, connecting to a remote network.
>
> Is there a way to do this? I can't find any hints in the man pages.
It's impossible. IPSEC can't be passed through a NAT.
The best you could do would be to terminate the tunnel on the gateway itself.
More information about the freebsd-security
mailing list