[fbsd] Re: Routing IPSEC packets?

[Andrew Pantyukhin]

On 8/21/06, Jeremie Le Hen <jeremie at le-hen.org> wrote:
> As is has indeed already been stated in this thread, IPSec tunnel mode
> shunts the routing table.  However the new enc(4) interface that Andrew
> Thompson has imported from OpenBSD allows to filter IPSec traffic in a
> more natural way.

My understanding is that "options IPSEC_FILTERGIF"
already forces decoded packets to show up on the
interface:

http://lists.freebsd.org/pipermail/freebsd-bugs/2005-December/016074.html