I have searched exhaustively, and I cannot find an answer to my question.
The questions is:
When using ipfilter on FreeBSD as a firewall, can a client on the private
LAN network establish an IPSec tunnel (with or without AH) to a tunnel
endpoint on the Internet. If yes, then how would ipfilter be configured for
such? And, does ipfilter handle IPSec tunnels in 'tunnel mode' or 'passive
Thanks in advance to all who reply! (Please cc me at