Re: Add IPSec IP Range in Linux kernel

Daniil Stolnikov <danila.st@xxxxxxx> · Wed, 9 Nov 2011 10:32:07 +0800

> Like I said, if you want address ranges, ask the userland IPSEC daemon
> authors to synthesize it.

In this letter, the mailing list http://marc.info/?l=strongswan-users&m=130613736616488&w=4 strongswan-users say that their product has support for IP ranges, but the stack of Linux is based on network masks. So I do not understand how this would work without the support at the kernel level? How will coordination of policies?

--
To unsubscribe from this list: send the line "unsubscribe linux-crypto" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html


Re: Add IPSec IP Range in Linux kernel
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]