Date: Tue, 25 Oct 2005 14:23:49 +0200 From: Eric Masson <e-masson@kisoft-services.com> To: VANHULLEBUS Yvan <vanhu_bsd@zeninc.net> Cc: freebsd-pf@freebsd.org Subject: Re: Filtering IPSec traffic ? Message-ID: <861x29bx9m.fsf@srvbsdnanssv.interne.kisoft-services.com> In-Reply-To: <20051025120539.GA2761@zeninc.net> (VANHULLEBUS Yvan's message of "Tue, 25 Oct 2005 14:05:39 %2B0200") References: <20051025095745.GA2581@zeninc.net> <d4f1333a0510250416m545761e2m5db8ffca126a39d6@mail.gmail.com> <20051025120539.GA2761@zeninc.net>
next in thread | previous in thread | raw e-mail | index | archive | help
VANHULLEBUS Yvan <vanhu_bsd@zeninc.net> writes: Hi Yvan, > That's the problem: enc0 doesn't seems to exists, at least on my > FreeBSD6 gate (perhaps I missed something in the configuration, or > perhaps this is not a "real" interface ?) !!! The enc(4) interface doesn't exist in FreeBSD. Atm, I use gif tunnels and transport mode beetween gateways, so I'm able to filter on gifs. The other main advantage in my case is that routing is explicit (no SPD inspection to check how packets are treated by the stack) Éric Masson -- C'est chiant cette règle de blague obligatoire. En ce moment j'ai plutôt envie de voir des os pilés. Mais ça va passer : hop un mon gros noeud sur /dev/null et ça va mieux. -+- GNA in : <http://www.le-gnu.net>; - L'a pété un neunuerone -+-
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?861x29bx9m.fsf>