On Wed, 2006-11-15 at 09:16 -0600, Venkat Yekkirala wrote: > > I think the ability to toggle whether unlabeled packets > > will be accepted or rejected for labeled networking is > > required by lspp. > > If this is required, this is probably best accomplished by > a policy rule (dis)allowing such access. Perhaps a policy > boolean? > > > Klaus, is that correct?
Sorry for the delay, but I only just recently got to talk to Klaus about this. The ability to toggle whether unlabeled packets will be accepted or rejected is not a requirement for LSPP but something nice to have. My two cents is I'd like to have it because I think there might be users who want that ability or think IPSec is broken because it causes all their network connections to stop. (I just received a bugreport with this very thing. I know the next question is going to be, well how do I turn it off. :-)) Joy -- redhat-lspp mailing list [email protected] https://www.redhat.com/mailman/listinfo/redhat-lspp
