I started playing with VPN, managed to make the tunnel work. Right now my setup looks like this: (box1)---<wireless>---(router)---<ethernet>---(box2) the IPSec tunnel being between box1 and router (both running OpenBSD-current, yesterday's snapshot), and all connections between them work over the tunnel - ssh, ftp, and the like. The fun part starts when I try to ssh from box1 to box2. I am able to, but when I for example run ls that would output more than a couple of lines of text, the ssh session freezes, though tcpdump on enc0 still shows some traffic between hosts for example when i try to press some keys - but nothing happens. Long story short, I managed to fix this by lowering mtu/mss - the highest value of mtu on the interface on that box that it was working with is 1162, and right now I have (again the highest value it worked with) "scrub in on enc0 max-mss 1190" in pf.conf on the router. So yes, it is working now - but isn't this overhead a bit too large?
PS. Many thanks to rezine who helped me figure this out :) -- viq
