Hi Cere, I'm not the most informed on this subject, but from personal expereince you can run IPSEC on a bridge firewall (assuming you are talking about the freeswan patch), but the bridge filter hooks don't see ipsec0 etc, which means that you can only apply rules to the physical interfaces. If security is paramount, I'd not recommend this. If there is another experimental patch I haven't heard of that you are referring to, I'd like to see it.
Cheers, Lewis > > > Date: Thu, 19 Sep 2002 16:35:49 -0700 (PDT) > From: "Cere M. Davis" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: [Bridge] ipsec patch with filtering bridge. > > > > Hi everyone, > > > Does anyone know of any reasons for conflicts between the > bridge-nf patch > and the ipsec patch that could be applied to the 2.4.19 > kernel. I would > like try to run IPsec on the filtering bridge firewall if possible. > > Thanks, > Cere > > - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - > - - - - - - > Cere Davis > Unix Systems Administrator - CSDE > [EMAIL PROTECTED] ph: 206.685.5346 > https://staff.washington.edu/cere > > GnuPG Key http://staff.washington.edu/cere/gpgkey.txt > Key fingerprint = B63C 2361 3B9B 8599 ECC9 D061 3E48 A832 F455 9E7FA > > _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
