|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Alwyn Goodloe (agoodloe
saul.cis.upenn.edu)
Date: Sat Mar 01 2003 - 15:32:55 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
In performing the setup for an experiment I have the following command:
setkey -c <<EOF
spdadd 192.168.4.2/32[any] 192.168.3.2/32[3322] udp -P out ipsec
esp/tunnel/192.168.5.1-192.168.7.2/require
esp/tunnel/192.168.5.1-192.168.5.2/require
Unfortunately, it doesn't seem to be filtering out UDP the packets heading
to that port. They just pass over the wire in the clear. Using tcpdump
I can watch them heading for 192.168.3.2.3322
If I remove the port ([3322]) the packets are put in the tunnel. Is there
something wrong with the port filtering here.
Alwyn Goodloe
agoodloegradient.cis.upenn.edu
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]