Hi,
On Wed, 21 Feb 2007, Irfan Ahmed wrote:
> I am using kernel 2.6.18 version in fedora linux which has built-in
> support for ipsec. I am interested to know how kernel handles ipsec
> encrypted packets. I have studied e1000 network driver which I am
> currently using but could not find any code that handles such
> functionalities.
>
> Any one has any clue or idea which part of kernel source code handles
> ipsec encrypted packets in Fedora linux.
I'm not an expert on the Linux kernel network stack, but IPsec should be
at layer 3 in the ISO netork stack. Actual hardware drivers, like the
e1000 driver you mention, are at layer 2, and isn't likely to handle
IPsec stuff at all.
IPsec stuff is likely handled in net/ code. A quick grep -inr ipsec net/*
shows:
- net/ipv4/*
- net/ipv6/*
- net/key/af_key.c
- net/netfilter/*
- net/xfrm/*
so it's very likely that IPsec is implemented there. IPsec should, by
design, be handled by the IP layer anyway, which is why you see a lot
of IPsec stuff in net/ipv{4,6}/ .
Hope that helps.
Srdjan
--
To unsubscribe from this list: send an email with
"unsubscribe kernelnewbies" to ecartis@xxxxxxxxxxxx
Please read the FAQ at http://kernelnewbies.org/FAQ
