Date: Fri, 25 Mar 2011 12:28:53 -0400 From: Stephen Clark <sclark46@earthlink.net> To: FreeBSD Stable <freebsd-stable@freebsd.org> Subject: SPD Message-ID: <4D8CC2C5.7020508@earthlink.net>
next in thread | raw e-mail | index | archive | help
Hi, If one has multiple entries in the SPD some representing more specific network addresses not to be encrypted and sent over an ipsec tunnel vs more general networks that would be encrypted would this work? In other words say I have a x.x.0.0/16 that should encrypted but in that x.x.0.0/16 I don't want x.x.84.0/23 to be encrypted could I do that? If so is dependent on the order the SPD entries are made? Thanks, Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D8CC2C5.7020508>