letting me know that the enc was available
as a kernel module!
Marin.
21 mars 2017 13:22 "Kristof Provost" a écrit:
> On 21 Mar 2017, at 12:44, Miroslav Lachman wrote:
> > Kristof Provost wrote on 2017/03/21 10:18:
> >> On 21 Mar 2017, at 9:43, Marin Bernard wrote:
Hi again Kristof,
It appears you were right. ICMP flows through even with no rule set. I'm afraid
I'll have to build a custom kernel.
Thank you for your help,
Marin.
21 mars 2017 10:18 "Kristof Provost" a écrit:
> On 21 Mar 2017, at 9:43, Marin Bernard wrote:
> &
ssible for a peer to ping another. As soon
as IKE creates a SA, however, ping starts working. As you can see,
the last rule is explicitely bound to the inexistent enc0 interface, and
yet is working fine.
Thanks,
Marin.
21 mars 2017 03:30 "Kristof Provost" a écrit:
> On 20 Ma
l does not support it. Is it expected behaviour? Is it
safe to use such a configuration on a production machine ?
Thanks,
Marin.
20 mars 2017 14:20 "Marin Bernard" a écrit:
> Hi all,
>
> I've just set up IPsec between two FreeBSD 11-RELEA
Hi all,
I've just set up IPsec between two FreeBSD 11-RELEASE hosts with
security/openiked.
___
freebsd-pf@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "freebsd-pf-unsubscr...@freebsd
