From owner-freebsd-security  Mon Sep  6 23:21:42 1999
Delivered-To: freebsd-security@freebsd.org
Received: from bogon.kjsl.com (bogon.kjsl.com [206.55.236.201])
	by hub.freebsd.org (Postfix) with ESMTP
	id BDB7C14D68; Mon,  6 Sep 1999 23:21:32 -0700 (PDT)
	(envelope-from javier@bogon.kjsl.com)
Received: (from javier@localhost)
	by bogon.kjsl.com (8.9.3/8.9.3) id XAA06072;
	Mon, 6 Sep 1999 23:20:00 -0700 (PDT)
From: Javier Henderson <javier@KJSL.COM>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <14292.44688.380092.659018@bogon.kjsl.com>
Date: Mon, 6 Sep 1999 23:20:00 -0700 (PDT)
To: dmp@aracnet.com
Cc: Gary Palmer <gpalmer@FreeBSD.ORG>, freebsd-security@FreeBSD.ORG
Subject: Re: Layer 2 ethernet encryption?
In-Reply-To: <37D4AB40.AEE4C2EA@aracnet.com>
References: <39480.936682378@noop.colo.erols.net>
	<37D4AB40.AEE4C2EA@aracnet.com>
X-Mailer: VM 6.63 under Emacs 19.34.1
X-Airplane-of-the-day: Grumman Tiger
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org



 > > > Is it possible to encrypt ethernet packets so that all layers above
 > > > layer 2 would be encrypted?  The idea I had was to make a device that
 > > > could defeat a TCP sniffer by encrypting the IP headers.  Is this
 > > > doable?  Viable?  A reinvention of the wheel?

	DEC used to have something called DESNC. I've no idea
if it exists or not still, but it does (did) what you want.

-jav


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message