On Fri, Feb 11, 2011 at 03:39:03PM +0000, jpo234 wrote: > Hello all, > is it possible to use the mac80211 (software) encryption infrastructure to > encrypt data over non 802.11 interfaces? If not, how hard would this be? > > IPsec and other VPN solutions are "tunnel centric" instead of "interface > centric". I'm looking for a way to say "All inbound and outbound traffic through > this interface must be encrypted with the following key.", just like WPA-PSK. I believe wpa_supplicant can do the 802.1x authentication to gain access to a port on a supporting switch. However, I am not aware of any standard for "encrypted ethernet" that would build upon that. You might consider implementing your own code on top of the TUN/TAP driver for point-to-point encrypted links? John -- John W. Linville Someday the world will need a hero, and you linville@xxxxxxxxxxxxx might be all we have. Be ready. -- To unsubscribe from this list: send the line "unsubscribe linux-wireless" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
