Re[4]: ipsec packet filtering
From: Nickolay A. Kritsky (nkritsky_at_star-sw.com)
Date: 07/30/04
- Previous message: Bjoern A. Zeeb: "Re[3]: ipsec packet filtering"
- In reply to: Bjoern A. Zeeb: "Re[3]: ipsec packet filtering"
- Next in thread: Peter Sandilands: "RE: ipsec packet filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 30 Jul 2004 12:47:20 +0400 To: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
Hello Bjoern,
Friday, July 30, 2004, 12:12:52 PM, Bjoern A. Zeeb wrote:
>> see? if the incoming packet is not in table, _and_ natd is not running
>> in proxy_only mode (which is not acceptable here) the packet flows by
>> without any change. And that's what the `man natd' says.
BAZ> please type
BAZ> man natd
BAZ> /reverse
BAZ> n
BAZ> this should be available in 4.9 too.
It's there. Oh my god! RTFM forever.
Well, thanks a lot, and sorry for time/traffic consumption.
<nooffencemeant>
I still don't like current situation with the way ipsec is processed
by ipfw,
</nooffencemeant>
but -reverse will help me for now.
-- Best regards, ; Nickolay A. Kritsky ; SysAdmin STAR Software LLC ; mailto:nkritsky@star-sw.com _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Bjoern A. Zeeb: "Re[3]: ipsec packet filtering"
- In reply to: Bjoern A. Zeeb: "Re[3]: ipsec packet filtering"
- Next in thread: Peter Sandilands: "RE: ipsec packet filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
