FreeS/WAN IPSec for Linux, AOC-Ottawa 2002-01-24, RGB
Next Table of Contents

KLIPS vs. Linux

  • Routing to steer packets in.
  • Eroutes to control them (primitive SPD).
  • SAs to process them.
  • SAID-grouping
  • Firewall interaction (updown)

    KLIPS2 plans:

  • Need to see *all* packets.
  • Interface via firewall, not routing.
  • Routing after encryption.
  • More complete SPD.
  • IPv6 support.

    Title Page

    Last modified by Richard Guy Briggs , Thu Jan 24 11:06:33 EST 2002 .