Date: Tue, 9 Apr 2002 09:40:24 -0400 From: "Cambria, Mike" <mcambria@avaya.com> To: freebsd-net@FreeBSD.ORG Subject: RE: kame ipsec vs. openbsd ipsec Message-ID: <3A6D367EA1EFD4118C9B00A0C9DD99D706567C@rerun.avayactc.com>
next in thread | raw e-mail | index | archive | help
> -----Original Message----- > From: Jun-ichiro itojun Hagino [mailto:itojun@iijlab.net] > > 4 is also incorrect. SPD is implemented as a radix > tree, separate > from IPv4 (or IPv6) routing table. therefore, it has nothing > to do with normal routing table. Is there one SPD per interface (e.g. one radix tree/interface)? I ask because of recent clarification (again) on the ipsec mailing list on the requirement for each interface to have an SPD. I don't see multiple SPD in my FreeBSD 4.5-Stable, nor any way to configure it. In other words, if the next hop lookup is to go out ipsec enabled IF-A, use SPD-A go out ipsec enabled IF-B, use SPD-B go out non-ipsec enabled IF-C, no SPD exists Thanks, MikeC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A6D367EA1EFD4118C9B00A0C9DD99D706567C>