kern/23400: IPsec transport mode precludes filtering
onunderlyingtransport header
Andre Oppermann
andre at freebsd.org
Mon Jun 28 15:11:17 PDT 2004
"Bjoern A. Zeeb" wrote:
>
> The following reply was made to PR kern/23400; it has been noted by GNATS.
>
> From: "Bjoern A. Zeeb" <bzeeb-lists at lists.zabbadoz.net>
> To: freebsd-gnats-submit at FreeBSD.org, seraf at 2600.com
> Cc:
> Subject: Re: kern/23400: IPsec transport mode precludes filtering on underlying
> transport header
> Date: Mon, 28 Jun 2004 21:25:28 +0000 (UTC)
>
> > o [2000/12/09] kern/23400 net IPsec transport mode precludes filtering
>
> I think this one can be closed.
>
> We can do filtering of IP encapsulated in IPSec since
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/ip_fw2.c#rev1.34
> resp.
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/ip_fw2.c#rev1.51
>
> with the ipsec flag.
Thanks Bjoern! I have closed the PR according to your message.
--
Andre
More information about the freebsd-net
mailing list