I would find IPSEC a lot easier to use, if ipsec encapsulating and decapsulating was a netfilter command I could issue anywhere, and IPSEC didn't have a ruleset and rule database on it's own. IMO that would be a lot easier. Andreas - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
