Date: Fri, 07 Feb 2014 15:31:39 +0400 From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: Nicolas DEFFAYET <nicolas-ml@deffayet.com>, freebsd-net@freebsd.org Subject: Re: IPsec filtertunnel broken on FreeBSD 10 Message-ID: <52F4C41B.3030101@yandex.ru> In-Reply-To: <1391725273.22934.16.camel@fr-wks3.corp.novso.com> References: <1391725273.22934.16.camel@fr-wks3.corp.novso.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 07.02.2014 02:21, Nicolas DEFFAYET wrote: > Hello, > > The IPsec filtertunnel is broken on FreeBSD 10: incoming packets > decapsulated are not going to firewall and to the pseudo interface enc. > > This issue affect 10.0-RELEASE and 10.0-STABLE. > 9.1-RELEASE and 9.2-RELEASE are not affected. > > Of course the systctl show that filtertunnel is enabled: > net.inet.ipsec.filtertunnel=1 > net.inet6.ipsec.filtertunnel=1 Can you show what values do you have in the sysctl net.enc ? -- WBR, Andrey V. Elsukov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?52F4C41B.3030101>