Site Navigation

Date:      Fri, 25 Mar 2011 12:28:53 -0400
From:      Stephen Clark <sclark46@earthlink.net>
To:        FreeBSD Stable <freebsd-stable@freebsd.org>
Subject:   SPD
Message-ID:  <4D8CC2C5.7020508@earthlink.net>

---

index | next in thread | raw e-mail

---

Hi,

If one has multiple entries in the SPD some representing more specific 
network addresses not to be encrypted and sent over an
ipsec tunnel vs more general networks that would be encrypted would this 
work?

In other words say I have a x.x.0.0/16 that should encrypted but in that 
x.x.0.0/16 I don't want x.x.84.0/23
to be encrypted could I do that? If so is dependent on the order the SPD 
entries are made?

Thanks,
Steve

home | help

---

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D8CC2C5.7020508>

Legal Notices | © 1995-2026 The FreeBSD Project. All rights reserved.

Contact