Nest
Nest is a secure IP VPN tunnel for FreeBSD. It connects two LANs over an insecure WAN. Nest works on the IP packet level. Its features include packet authentication and integrity checking (with 96-bit SHA1-derived HMAC), packet encryption (with Blowfish and 160-bit key CBC mode), replay protection, adjustable packet queuing, and compression. The VPN traffic appears on the WAN as a bidirectional stream of IP packets or as a unidirectional ICMP request/response stream. The latter case allows the establishment of VPN tunnels through certain firewalls.
| Tags | Communications Internet Networking |
|---|---|
| Licenses | BSD Original |
Recent releases
- 22 Apr 2005 23:44
Changes: A #define to make the program silent was added. A bootable FreeBSD floppy containing the software is now also available for download.
- 15 Dec 2004 06:44
Changes: A compatibility problem with FreeBSD 5.3-STABLE and 4.10-STABLE was fixed. This problem was caused by a sudden change that was made in the semantics of divert sockets under these versions of FreeBSD. This prevented nest from working in ICMP response sending mode.
- 24 May 2004 21:13
Changes: Support for VPN tunneling through a unidirectional stream of regular ICMP requests/responses was implemented. This makes it possible to establish VPNs between two machines if one can merely ping the other. Support for IP masquerading (a-la NAT) was also included.
- 28 Oct 2003 07:54
No changes have been submitted for this release.
