From owner-IPv6-jp@jp.freebsd.org  Tue Aug 11 23:01:47 1998
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) id XAA19212;
	Tue, 11 Aug 1998 23:01:47 +0900 (JST)
	(envelope-from owner-IPv6-jp@jp.FreeBSD.org)
Received: from titanium.yy.ics.keio.ac.jp (titanium.yy.ics.keio.ac.jp [131.113.47.73])
	by jaz.jp.freebsd.org (8.8.8+3.0Wbeta13/8.7.3) with ESMTP id XAA19203
	for <IPv6-jp@jp.freebsd.org>; Tue, 11 Aug 1998 23:01:45 +0900 (JST)
	(envelope-from sanpei@yy.cs.keio.ac.jp)
Received: from lavender.sanpei.org (u2218.seaple.icc.ne.jp [203.140.42.218])
	by titanium.yy.ics.keio.ac.jp (8.8.8+3.0Wbeta13/3.6W) with ESMTP id XAA28570
	for <IPv6-jp@jp.freebsd.org>; Tue, 11 Aug 1998 23:01:43 +0900 (JST)
Received: (from sanpei@localhost)
	by lavender.sanpei.org (8.8.7/3.6W) id XAA01110;
	Tue, 11 Aug 1998 23:02:07 +0900 (JST)
Message-Id: <199808111402.XAA01110@lavender.sanpei.org>
To: IPv6-jp@jp.freebsd.org
X-Mailer: Mew version 1.70 on Emacs 19.28.1 / Mule 2.3
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Tue, 11 Aug 1998 23:02:05 +0900
From: MIHIRA "Sanpei" Yoshiro <sanpei@yy.cs.keio.ac.jp>
Reply-To: IPv6-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+980729
X-Sequence: IPv6-jp 148
Subject: [IPv6-jp 148] IPsec with NAT(IP masquerade)
Errors-To: owner-IPv6-jp@jp.freebsd.org
Sender: owner-IPv6-jp@jp.freebsd.org

KAME $B$rMQ$$$?(B IPsec $B$K$D$$$F$N<ALd$G$9(B. 

  $B<!$N$h$&$J7A<0$G(B IPsec $B$N(B tunnel $B$rD%$m$&$H;W$C$F$$$^$9$,(B. $B2DG=$G(B
$B$7$g$&$+(B?

             bare IP        IPsec
[[[site A]]] ------- host a -=-=-+ 
                             NAT router
				 +======== host b ------- [[[site B]]]
                                   IPsec        bare IP

  host a $B$,D>@\(B global IP $B$r;}$D$N$G$O$J$/(B, NAT router $B$r2p$7$F7R$,$C(B
$B$F$$$k>l9g$r9M$($F$$$^$9(B. ($B$3$3$G$N(B NAT $B$O(B, $B$$$o$f$k(B IP masquerade 
$B$r9M$($F$$$^$9(B)

  KAME $B$N(B IPsec $B$N%3%^%s%INc$r$6$C$H8+$?8B$j$G$O(B, security gateway 
$B$NN>J}$N(B global IP $B$,B(CM$G$"$k$h$&$K8+<u$1$i$l$^$9(B. $B$,(B, NAT $B$J4D6-(B
$B$G$O(B, $B$I$&$9$l$PNI$$$N$G$7$g$&$+(B?

	o NAT router $B$N(B grobal IP $B$r=q$/(B($B$G$b(B, host b->a $B$N%Q%1%C%H$C$F(B??)
	o host a->b $B$N:G=i$N@\B3%Q%1%C%H$rMQ$$$F(B, $B%H%s%M%k$r$O$C$F(B
	  $B$"$H$O4hD%$k(B. 
	o $B8=>u$OL5M}$@$,(B, $B$=$N$&$A$I$&$K$+$J$k(B. 
	o IPsec $BE*$KL5M}(B...

sanpei
