Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 06 Aug 2002 10:51:30 +0200
From:      Eric Masson <e-masson@kisoft-services.com>
To:        cjclark@alum.mit.edu
Cc:        Matthew Grooms <mgrooms@seton.org>, dlavigne6@cogeco.ca, Mailing List FreeBSD Security <freebsd-security@FreeBSD.ORG>
Subject:   Re: esp tunnel without gif(4) [Was Re: vpn1/fw1 NG to ipsec/racoon troubles, help please ...]
Message-ID:  <86znw0z7xp.fsf@notbsdems.nantes.kisoft-services.com>
In-Reply-To: <20020805174156.GA62935@blossom.cjclark.org> ("Crist J. Clark"'s message of "Mon, 5 Aug 2002 10:41:56 -0700")
References:  <sd455602.090@aus-gwia.aus.dcnhs.org> <20020730074813.GF89241@blossom.cjclark.org> <86znw5r9h3.fsf_-_@notbsdems.nantes.kisoft-services.com> <86k7n9qv08.fsf@notbsdems.nantes.kisoft-services.com> <20020802172729.GA6880@blossom.cjclark.org> <86wur5o0r4.fsf@notbsdems.nantes.kisoft-services.com> <20020805174156.GA62935@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
>>>>> "Crist" == Crist J Clark <crist.clark@attbi.com> writes:

 Crist> Tunnelling is not the same as routing. The tunnelling actually
 Crist> has no effect on routing. A packet going through the tunnel is
 Crist> encapsulated and sent to a different destination. This is not
 Crist> like routing where we don't touch the source or destination
 Crist> addresses and merely manipulate where the packet is directed on
 Crist> the next hop. Once encapsulation is done, routing is done
 Crist> normally.

 Crist> I think a command that displays the SPD and live SAD entries in
 Crist> more intuitive ways, possibly in a 'netstat -r'-like fashion
 Crist> would be very useful, but it shouldn't actually be in 'netstat
 Crist> -r.'

I was just thinking of a more friendly way to display tunnels, so
netstat came to my mind, but it seems that a specialized command should
be better.

Thanks

Eric Masson

-- 
 coucou m'man! Fais-moi plaisir, réagis, que je puisse t'humilier en
 public!
 -+- Attila in <http://www.le-gnu.net>; : Bonne fête maman -+-

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86znw0z7xp.fsf>