Re: IPsec on a LAN?

What you’re looking for is “transport mode” IPsec. Dan Langille wrote this 14 years ago, it may still be accurate. http://www.freebsddiary.org/ipsec.php This is a bit more recent (14 months ago), and should be easy to adapt to two FreeBSD hosts: http://www

IPsec on a LAN?

Hi there! I'm trying to find a resource for learning how to go about setting up IPsec on an IPv4 LAN. The Handbook and just about every resources I can find on the 'net talks about using IPsec to tunnel to another site, but I just want my local boxes (or some subset of them) to encrypt traffic to

Re: netmap-ipfw on em0 em1

On 5/5/15 10:46 PM, Barney Cordoba wrote: Are you NOT SHARP ENOUGH to understand that my proposal DOESN'T USE THE NETWORK STACK? OMFG Barney, your proposal is that we provide a framework to allow network IP stack bypass in the case of special processing. that framework still needs to be hooked

MFC-ing TCP timer race condition fix

(Same exact email but with a meaningful topic this time...) Hi list, I was asked if it is possible to MFC r281599 in FreeBSD 10: --- Fix an old and well-documented use-after-free race condition in TCP timers: - Add a reference from tcpcb to its inpcb - Defer tcpcb deletion until TCP timers

Re: netmap-ipfw on em0 em1

Are you NOT SHARP ENOUGH to understand that my proposal DOESN'T USE THE NETWORK STACK? OMFG Julien, perhaps if people weren't so hostile towards commercial companies providing ideas for alternative ways of doing things you'd get more input and more help. Why would I want to help these people? BC

MFC-ing

Hi list, I was asked if it is possible to MFC r281599 in FreeBSD 10: --- Fix an old and well-documented use-after-free race condition in TCP timers: - Add a reference from tcpcb to its inpcb - Defer tcpcb deletion until TCP timers have finished --- https://svnweb.freebsd.org/base?view=revisi