On Netgraph
Eugene Grosbein
eugen at grosbein.net
Wed Jun 10 05:39:40 UTC 2020
10.06.2020 6:48, John-Mark Gurney wrote:
> Tom Marcoen wrote this message on Tue, Jun 09, 2020 at 12:53 +0200:
>> That is what I had in mind. Though I was hoping I could put the encryption
>> in NetGraph too so that I would not see that interface on my host where I
>> do not need to see it.
>
> You wouldn't see any interface if you're encrypting and authenticating
> a UDP tunnel with IPsec... the Security Association (SA) is transparent
> and does not appear on the interface list of your host..
This is only partially true these days:
https://www.freebsd.org/cgi/man.cgi?query=if_ipsec
More information about the freebsd-net
mailing list