Re: IPSec VPNs: to gif or not to gif

From: Crist J. Clark (cristjc_at_comcast.net)
Date: 10/27/03

  • Next message: Nigel Houghton: "Re: How to disable XFree86 and wdm listening ports" 
    Date: Mon, 27 Oct 2003 14:19:16 -0800
To: Bill Swingle <unfurl@dub.net>

    On Sun, Oct 26, 2003 at 08:52:22AM -0800, Bill Swingle wrote:
    > On Thu, Oct 23, 2003 at 06:23:03AM -0500, G. Panula wrote:
    > > Current behavior is encrypted packet is handled by ipfw once, then after
    > > decryption it is only handled by ipfw(again) if it passes thru an
    > > interface didn't arrive on.
    >
    > Does this apply to ipfilter as well?

    Yes. 

    -- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
  • Next message: Nigel Houghton: "Re: How to disable XFree86 and wdm listening ports"

    Relevant Pages

    • Re: IPSec VPNs: to gif or not to gif
      ... > Current behavior is encrypted packet is handled by ipfw once, ... > decryption it is only handled by ipfwif it passes thru an ... They can only give you answers" Pablo Picasso ...
      (FreeBSD-Security)
    • Re: IPSec VPNs: to gif or not to gif
      ... >Current behavior is encrypted packet is handled by ipfw once, ... >decryption it is only handled by ipfwif it passes thru an ... >interface didn't arrive on. ...
      (FreeBSD-Security)