kern/23400: IPsec transport mode precludes filtering onunderlying
transport header
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Mon Jun 28 14:40:25 PDT 2004
The following reply was made to PR kern/23400; it has been noted by GNATS.
From: "Bjoern A. Zeeb" <bzeeb-lists at lists.zabbadoz.net>
To: freebsd-gnats-submit at FreeBSD.org, seraf at 2600.com
Cc:
Subject: Re: kern/23400: IPsec transport mode precludes filtering on underlying
transport header
Date: Mon, 28 Jun 2004 21:25:28 +0000 (UTC)
> o [2000/12/09] kern/23400 net IPsec transport mode precludes filtering
I think this one can be closed.
We can do filtering of IP encapsulated in IPSec since
http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/ip_fw2.c#rev1.34
resp.
http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/ip_fw2.c#rev1.51
with the ipsec flag.
--
Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT
More information about the freebsd-net
mailing list