> My machine is behind a FreeBSD 4.5R firewall which does (of course)
> NAT to the machines behind it including mine.
> Now, I would like to make a IPSEC VPN connection to a server on the
> other part of the net, zet unsuccessfully. I've been told that the
> problem is that the firewall currently does not translate the IP
> address in the IPsec packets.
> Could you please tell me how to do so?
NAT and IPsec don't play nice with each other. NAT's job is to change
packets so they reach the correct destination, and part of IPsec's job is to
ensure that packets aren't changed before they reach their destination.
AFAIK, you will need to either do IPsec on the firewall (so IPsec stuff
happens before NAT comes in to play), or find another solution.
Remove pig-latin to reply by e-mail