Subject: Re: Tunneling question.
To: Manuel Bouyer <bouyer@antioche.lip6.fr>
From: Andrew Gillham <gillham@vaultron.com>
List: netbsd-users
Date: 07/24/2002 10:25:29
On Wed, Jul 24, 2002 at 10:45:27AM +0200, Manuel Bouyer wrote:
> On Wed, Jul 24, 2002 at 10:34:41AM +0200, Mattias Karlsson wrote:
> > Well, since A is behind NAT, B can't reach it, but A can reach B
> > without a problem.
>
> Hum, it's a bit harder then, and you won't be able to use gif.
> You'll need to have A establish a TCP connection with B, and have your tunnel
> run on top of that (with ppp for example).
>
> The security/ssh-ip-tunnel would be useable here but may not be the more
> efficient for your environnement (it runs on top of ssh, which is good
> for security but you have to pay the ssh overload).
> Maybe net/vtun would be useable, but I never used it so I don't know how it
> runs exactly.
I have used vtun, and it works pretty well. You have to keep in mind it
has the performance issues of running in userland, but on a fast machine it
is not really an issue. (unless you're tunneling over a high-speed link)
-Andrew