On Fri, 2005-08-05 at 11:13, Aleksandar Milivojevic wrote: > Anyhow, the more I work with native Linux IPSec, the more it seems to me > decision not to assign virtual interface (like ipsec* or tun*, like some other > VPN implementations do) to tunnels was a mistake (maybe current way looks > cleaner to kernel developer, but the old way was way simpler to manage for > system administrator). Can you fix this the way it is commonly done in routers? That is, configure a GRE tunnel as the end points to get a real-looking interface that you can route over, do multicast, etc., and then push the GRE packets through ipsec. I've wondered if this would work between a Linux box and a Cisco router but never had time to test it. (I have done GRE tunnels and multicast, just not the ipsec part). -- Les Mikesell lesmikesell@xxxxxxxxx
making a route sticky
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: making a route sticky
- From: lesmikesell at gmail.com (Les Mikesell)
- Date: Fri Aug 5 16:41:37 2005
- In-reply-to: <20050805111329.rnp4d58so4s4g00s@xxxxxxxxxxxxxxxxxxx>
- References: <20050805100647.mhcbd02jcc4w8ck4@xxxxxxxxxxxxxxxxxxx> <1123255815.6344.133.camel@xxxxxxxxxxxxxxxxxxxxx> <42F38A31.4040904@xxxxxxxxxxxx> <20050805111329.rnp4d58so4s4g00s@xxxxxxxxxxxxxxxxxxx>
- Follow-Ups:
- making a route sticky
- From: Aleksandar Milivojevic
- making a route sticky
- References:
- making a route sticky
- From: Aleksandar Milivojevic
- making a route sticky
- From: Alexander Dalloz
- making a route sticky
- From: Feizhou
- making a route sticky
- From: Aleksandar Milivojevic
- making a route sticky
- Prev by Date: FS problems on Centos4 LVM
- Next by Date: FS problems on Centos4 LVM
- Previous by thread: making a route sticky
- Next by thread: making a route sticky
- Index(es):
 |