From owner-freebsd-net@FreeBSD.ORG Sat Jun 9 17:12:34 2012 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A6EC91065673; Sat, 9 Jun 2012 17:12:34 +0000 (UTC) (envelope-from egrosbein@rdtc.ru) Received: from eg.sd.rdtc.ru (eg.sd.rdtc.ru [IPv6:2a03:3100:c:13::5]) by mx1.freebsd.org (Postfix) with ESMTP id 0F5BD8FC0A; Sat, 9 Jun 2012 17:12:33 +0000 (UTC) Received: from eg.sd.rdtc.ru (localhost [127.0.0.1]) by eg.sd.rdtc.ru (8.14.5/8.14.5) with ESMTP id q59HCWY1085420; Sun, 10 Jun 2012 00:12:32 +0700 (NOVT) (envelope-from egrosbein@rdtc.ru) Message-ID: <4FD38400.3030109@rdtc.ru> Date: Sun, 10 Jun 2012 00:12:32 +0700 From: Eugene Grosbein User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; ru-RU; rv:1.9.2.13) Gecko/20110112 Thunderbird/3.1.7 MIME-Version: 1.0 To: jlh@freebsd.org, "net@freebsd.org" References: <4FD236D4.6090409@norma.perm.ru> <20120609170721.GA40355@felucia.tataz.chchile.org> In-Reply-To: <20120609170721.GA40355@felucia.tataz.chchile.org> Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 8bit Cc: Subject: Re: if_ipsec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 09 Jun 2012 17:12:34 -0000 10.06.2012 00:07, Jeremie Le Hen пишет: > I'm not sure I've understood what you're asking. As a network engineer, > I'm sure you know there are two modes with IPSec: tunnel and transport. > > Tunnel mode is weird because it practically creates an encrypted tunnel, > but the later is invisible from the OS, IIRC. Basically, he wants tunnel mode to create full-blown network interface without overhead for extra gre/gif packet header. Eugene Grosbein