Have you ever think of using netfilter+bridge patch at http://bridge.sourceforge.net/? All the packet could be filter by iptables but your system still a transparent bridge.
Then you can do packet encryptions in user-space by modifying packet mangling of iptales. > > I've also considered IPSec and other approaches - the only other way > that might work for me is to add AES encryption to the packet mangling > stuff in the IP Filter, but then my system isn't network-transparent > anymore... > _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
