[RFC/RFT] projects/ipsec
Andrey V. Elsukov
ae at FreeBSD.org
Sun Dec 11 12:54:27 UTC 2016
On 11.12.2016 15:50, Slawa Olhovchenkov wrote:
>> You can specify what you want, but this just will not work as you
>> expect. A router usually must not handle all TCP sessions that it
>
> You mean forward to IPSec system only packets with DST_IP = my_ip?
> I that case, why you talk only about not handled returned packets?
> Originated packets also don't address to me.
I already described how it works and that you can configure what
you want.
https://lists.freebsd.org/pipermail/freebsd-net/2016-December/046616.html
--
WBR, Andrey V. Elsukov
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 541 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-net/attachments/20161211/52d6e487/attachment.sig>
More information about the freebsd-net
mailing list