IPsec tunnel mode with gif
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Thu Jul 20 22:33:19 UTC 2017
On 20 Jul 2017, at 22:02, Kajetan Staszkiewicz wrote:
> Yet for a reason beyond my understanding FreeBSD handbook proposes a
> 3rd mode:
> using a GIF tunnel together with IPSec tunnel mode. I really don't
> understand
> how is that supposed to work. People On The Internet also seem not to
> be able
..
> Am I wrong? Or is the Handbook wrong?
The handbook is outdated and I think what you are referring to is from
the early days of the IPv6/IPsec stack implementation times probably
during FreeBSD 4.
What you are doing (gre/gif inside transport mode to possibly get a
link-state change as well, or BGP over transport mode directly is both
fine.
I think the short answer: updates to the handbook would be very
welcome!
/bz
More information about the freebsd-net
mailing list