This problem is caused because IPsec tunnel mode creates 'implicit' tunnels.
These are not visible to the rest of the IP layer, because the decision to
tunnel the traffic is made after the packet has been forwarded.
One easy solution is to create an 'explicit' tunnel, using something like GRE,
But, could the rules be applied to data being received from a tunnel?
With mobile IPSec clients (ignoring PPTP as an option), there is no way to
control data received. You can only have filters on what goes into a tunnel
and not what is coming out. If this could be overcome, that'd be great and
On 3/30/06, Jason J Ellingson [EMAIL PROTECTED] wrote:
But, could the rules be applied to data being received from a tunnel?
With mobile IPSec clients (ignoring PPTP as an option), there is no way to
control data received. You can only have filters on what goes into a tunnel
and not what is
On 3/30/06, Bill Marquette [EMAIL PROTECTED] wrote:
Hmmm...I did some work on porting enc(4) over from OpenBSD - I don't
recall how far I got though (or for that matter, where that work
is...I suspect I just lost it two weeks ago in a hard drive crash on
my laptop - it's on some VM somewhere).
On 3/30/06, Scott Ullrich [EMAIL PROTECTED] wrote:
On 3/30/06, Bill Marquette [EMAIL PROTECTED] wrote:
Hmmm...I did some work on porting enc(4) over from OpenBSD - I don't
recall how far I got though (or for that matter, where that work
is...I suspect I just lost it two weeks ago in a hard
Jason
Different problem space.
To filter on stuff coming out of an IPsec tunnel is not possible on FreeBSD
until somebody ports the enc device over.
On Thursday 30 March 2006 18:21, Jason J Ellingson wrote:
But, could the rules be applied to data being received from a tunnel?
With mobile
What is the most recent 'stable' version and where do I get it?
Thanks in advance!
Brian Tafoya
Director of IT/Software Development
Hot Stix Technologies
14825 N. 82nd Street
Scottsdale, AZ 85260
(480) 513-1333
www.HotStixGolf.com
http://www.pfsense.com/~sullrich/RELENG_1_SNAPSHOT_03-26-2006/
On 3/30/06, Brian E. Tafoya [EMAIL PROTECTED] wrote:
What is the most recent 'stable' version and where do I get it?
Thanks in advance!
Brian Tafoya
Director of IT/Software Development
Hot Stix Technologies
14825 N. 82nd
I would like to setup a conenction to an external proxy to send all my
http requests through. I already have a local proxy and just want to
have all http requests sent to another proxy. Only thing is that the
proxys i use change. (Use proxy4free.com) and change weekly, (Paranoid
school blocks
I think there is a bug when reconfiguring vlans. After
creating and then deleting several vlans the real interface as per an ifconfig
-a (vlan0, vlan1 etc) dont seem to be removed. If you then try to
setup a new/different vlans its configuration will show up but wont
actually be taking
There is nothing that can be done to prevent the interface drop I think. On
faster hardware it won't be 30 seconds though. The reconfiguring downs all
interfaces and brings them up again.
Concerning the vlan remove/add problem please try
Yeah I've been meaning to upgrade but I figured I'd report it anyway. A
quick search via the cvs trac didn't seem to show anything relating to
this since Beta 2 came out.
Yeah I'm not really worried about the drop, wasn't sure if it was
supposed to be normal or not. I'm not planning on changing
12 matches
Mail list logo
