SPD
Stephen Clark
sclark46 at earthlink.net
Fri Mar 25 16:47:51 UTC 2011
Hi,
If one has multiple entries in the SPD some representing more specific
network addresses not to be encrypted and sent over an
ipsec tunnel vs more general networks that would be encrypted would this
work?
In other words say I have a x.x.0.0/16 that should encrypted but in that
x.x.0.0/16 I don't want x.x.84.0/23
to be encrypted could I do that? If so is dependent on the order the SPD
entries are made?
Thanks,
Steve
More information about the freebsd-stable
mailing list