On Thursday 14 October 2004 02:23, Tom Eastep wrote: > Bart De Schuymer wrote: > > On Monday 16 August 2004 03:31, Patrick McHardy wrote: > >>The problem is ipv4_sabotage_out in the briding code. It prevents the > >>packet from hitting the LOCAL_OUT hook while it is still unencrypted. > >>When it hits the bridging code and its LOCAL_OUT hook it's too late. > >>Not sure how to handle it yet. > > > > I'll have a look at that after I'm finished with the IPv6 bridge > > firewalling > > > stuff. > > Any progress on this? It's in the back of my mind, but I haven't had time yet to look into the ipsec code. I'll try next weekend. It's probably non-trivial, as Patrick didn't see a direct solution. cheers, Bart
