On Wed, Sep 13, 2006 at 01:00:42AM -0300, Gustavo Rios wrote: > Dear friends, > > I am starting to learn VPN, and i am very confused with some points. > For instance, concerning firewall rules. > > It is not clear right now, on which interface i should see the > protocol esp, ipencap, ah, etc. I could not figure it out on which > interface, should i filter tcp, udp and application layer traffic like > dns, http, ftp, ftp-data, etc between the both networks i am > connecting ... > > Thanks in advance.
vpn(8) has been removed from the tree for a while now. the official place to start reading right now is ipsec.conf(5). a simple section on packet filtering has just been added to that page. read through it. if stuff doesn;t make sense, post your questions here. jmc
