Date: Fri, 5 Jan 2007 10:42:47 +0100 From: VANHULLEBUS Yvan <vanhu_bsd@zeninc.net> To: freebsd-net@freebsd.org Subject: Re: NAT Taversal bug in kernel patch ? Message-ID: <20070105094247.GA29706@zen.inc> In-Reply-To: <20070103095404.42189.qmail@web51909.mail.yahoo.com> References: <20070103080704.GA486@zen.inc> <20070103095404.42189.qmail@web51909.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jan 03, 2007 at 01:54:04AM -0800, ashoke saha wrote: > yes, i also did my own pvt patch . i think PFKEY needs > to be modified for scalability . We should be able to > send multiple commands, SPIs, policy id and different > actions for each etc. Some kind of "PFKeyV3" would allow such changes, and would also have another advantage: standardization of lots of common extensions. But it would be a really heavy work to do that, and I guess IETF people will answer something like "ike is dead, ikev2 is the future".... Yvan. -- NETASQ http://www.netasq.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070105094247.GA29706>