Hi, We're currently (since 4 hours :() building a new wlan for my home network. My confuguration is as follows:
re0: link to my router (juniper) which is connected to a private line... fxp0: link to my workstations fxp1: link to my accespoint (Linksys WRT54GL, acting as a bridge) fxp2: optical link to my servers switch fxp3: connected to a via board ne1: link to a very old device using bnc ne3: currently unused brige0: sould be ne1 + ne3 in the future... I want to protect my wlan using ipsec, I've already tried openvpn but it don't like the way it works... wlan clients get their ip's using dhcp on the 10.0.0.0/24 subnet, it works great. I've blocked all incoming traffic in fxp1 using pf, but what I don't get to work is ipsec :( as I've more than one laptop/wireless devices and there are one or two devices added dynamically (usually some firends laptop...) I need to be able to allow multiple peers to connect at the same time. I've read man 5 ipsec.conf and also some guides on the net (mostly outdated...), but don't understand the whole stuff. What do I have to configure in ipsec.conf to allow multiple connections from 10.0.0.0/24 to my internal LAN and the Internet? Could someone guide me to an up-to-date howto/manpage or an example? Thanks! -- greetings chris