Date: Fri, 20 Mar 1998 11:13:47 +0100 From: Pierre.Beyssac@hsc.fr (Pierre Beyssac) To: baum@actcom.co.il (Alexander Indenbaum) Cc: gary@hotlava.com (Gary Howland), FreeBSD-Hackers@FreeBSD.ORG Subject: Re: IPSec Message-ID: <19980320111347.GL52250@mars.hsc.fr> In-Reply-To: <Pine.SUN.3.96-heb-2.07.980319203057.8219A-100000@actcom.co.il>; from Alexander Indenbaum on Mar 19, 1998 20:58:03 %2B0200 References: <Pine.SUN.3.96-heb-2.07.980319203057.8219A-100000@actcom.co.il>
next in thread | previous in thread | raw e-mail | index | archive | help
According to Alexander Indenbaum: > After checking I found out that IPSec is already implemented under > OpenBSD, so as a beginning we're probably going to port OpenBSD code > to FreeBSD. > > Does anyone already working on it? IPSEC for FreeBSD would really be a nice thing to have ! Meanwhile, you can use the SKIP package which is a very similar approach but AFAIK isn't 100% IPsec compatible (uses protocol number 57). There's also the INRIA IPv6 code which seems to implement bits and pieces of IPsec. I don't the code well enough yet to know if it's only IPsec/IPv6 or if it does IPsec/IPv4 too. I also don't know if it's functional yet (there's something in the TODO list about testing it). It's distributed without stuff like MD5/SHA/DES due to the ridiculous french law on cryptography control, but it shouldn't be very difficult to put that back in based on freely distributable versions, all the hooks are already in. Maybe you can try their patches for FreeBSD 2.2.5 and see if there's a lot of work involved in making it work for IPv4 too. It's available at ftp://ftp.inria.fr/network/ipv6/. I'm currently porting this to -current and might have a look at the IPsec part too, once I've got basic IPv6 functionalities working. -- Pierre.Beyssac@hsc.fr To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980320111347.GL52250>