Network traffic monitoring: BSD monitor & verifying encryption

Matthew Seaman m.seaman at infracaninophile.co.uk
Wed Jul 8 18:09:14 UTC 2009


Daniel Underwood wrote:
> Thanks for the help.
> 
> I couldn't find any flags/fields in TCP packets indicated whether
> encrypted (as in the case of SSH packets).  There isn't any, right?

Correct: there isn't anything like that in the TCP headers.  Encryption
on TCP streams is an application level thing that only affects packet
payloads.

There are transport layer encryption protocols -- eg. IPSec, OpenVPN, etc.
-- but those allow tunnelling TCP streams through them and aren't necessarily
TCP themselves.

	Cheers,

	Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
                                                  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
                                                  Kent, CT11 9PW

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 259 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20090708/b5245eb5/signature.pgp


More information about the freebsd-questions mailing list