Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 25 Oct 2005 14:23:49 +0200
From:      Eric Masson <e-masson@kisoft-services.com>
To:        VANHULLEBUS Yvan <vanhu_bsd@zeninc.net>
Cc:        freebsd-pf@freebsd.org
Subject:   Re: Filtering IPSec traffic ?
Message-ID:  <861x29bx9m.fsf@srvbsdnanssv.interne.kisoft-services.com>
In-Reply-To: <20051025120539.GA2761@zeninc.net> (VANHULLEBUS Yvan's message of "Tue, 25 Oct 2005 14:05:39 %2B0200")
References:  <20051025095745.GA2581@zeninc.net> <d4f1333a0510250416m545761e2m5db8ffca126a39d6@mail.gmail.com> <20051025120539.GA2761@zeninc.net>

next in thread | previous in thread | raw e-mail | index | archive | help
VANHULLEBUS Yvan <vanhu_bsd@zeninc.net> writes:

Hi Yvan,

> That's the problem: enc0 doesn't seems to exists, at least on my
> FreeBSD6 gate (perhaps I missed something in the configuration, or
> perhaps this is not a "real" interface ?) !!!

The enc(4) interface doesn't exist in FreeBSD.

Atm, I use gif tunnels and transport mode beetween gateways, so I'm able
to filter on gifs. The other main advantage in my case is that routing
is explicit (no SPD inspection to check how packets are treated by the
stack)

Éric Masson

-- 
 C'est chiant cette règle de blague obligatoire. En ce moment j'ai plutôt
 envie de voir des os pilés. Mais ça va passer : hop un mon gros noeud
 sur /dev/null et ça va mieux.
 -+- GNA in : <http://www.le-gnu.net>; - L'a pété un neunuerone -+-



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?861x29bx9m.fsf>