IPSec debug

Nikolay Petrov mailinglists at hq.panda.bg
Sat Apr 10 05:11:25 PDT 2004


Hi,

I have FreeBSD box with network interface having y.y.y.y ip address.
On same box i configure next ipsec ploicys to process trafic from
hardware ipsec enabled device.

spdadd 0.0.0.0/0 x.x.x.x/24 any -P out ipsec esp/tunnel/y.y.y.y-z.z.z.z/require;
spdadd x.x.x.x/24 0.0.0.0/0 any -P in ipsec esp/tunnel/z.z.z.z-y.y.y.y/require;

Is it possible to see decrypted incoming packets, and outgoing packets
before  are they encrypted
  

-- 
Best regards,
 Nikolay                          mailinglists at hq.panda.bg



More information about the freebsd-security mailing list