These pages are out of date and presented here for historical purposes only.

Please follow this link for the current pages.

OpenBSD Prerequisites

What you need to do before you start

Below here is some information you need to do before you start using your OpenBSD machine as an IPsec gateway.

sysctl configuration

The only thing you need in order to make your OpenBSD act as a IPsec gateway is to enable ip forwarding by typing editing the following in your /etc/sysctl.conf.

net.inet.ip.forwarding=1 # 1=Permit forwarding

And the enter 'sysctl -w net.inet.ip.forwarding=1' to enable ip forwarding without needing to reboot your machine.

Starting and stopping isakmpd

normally you just want to start isakmpd by typing 'isakmpd', as root.

Stop isakmpd by typing:

kill `cat /var/run/isakmpd.pid`

Startup configuration

When everything works. Please update your /etc/rc.conf.local so that isakmpd starts when the machine starts.