Date: Sat, 18 Mar 2006 22:02:39 +0300 From: "Andrew Pantyukhin" <infofarmer@gmail.com> To: "FreeBSD Questions" <questions@freebsd.org> Subject: IPSec NFS Message-ID: <cb5206420603181102u5607efe8p1e77e8d4d004569@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
I use IPSec to secure rw access to NFS shares. What would you suggest to ensure that in no case whatsoever non-ipsec packet gets to NFS? I can use require-level policies and I can tell ipfw to only pass ipsec, but what if ipfw and setkey somehow fail, even for a few minutes? Should I rely on that not happening? Thanks!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cb5206420603181102u5607efe8p1e77e8d4d004569>