On Fri, 12 Apr 2002, Stephen Frost wrote:
> * Matthew G. Marsh ([EMAIL PROTECTED]) wrote:
> > On 2.4 I am using Hardware (RedCreek IPSec PCI cards) but I have Cerberus
> > (unfortunately it is licensed US only due to being produced by NIST)
> > running on 2.2 kernels. I am keeping an eye on the various IPv6 projects
> > to see if the IPSec developments will bear fruit. There is no other
> > software IPSec that I know of for Linux :-{ .
>
> Erm, FreeS/wan?
Yes - in this thread I was replying to someone who wished to know what I
ran for IPSec since I do not run FreeS/WAN on purpose. FreeS/WAN does not
play at all with the Linux IP routing and I make extensive use of the
policy routing structures. Quite a pity that the FreeS/WAN people have not
changed that part of the software. I know they were considering/working on
using NetFilter framework and I hope that if they go down that path that
the software will then play with the policy routing core. I know NetFilter
plays well onc you figure out the packet pathing.
> > I have also had success with vpnd and CIPE. Unfortunately CIPE is only UDP
> > based so timeouts and drops are a problem on some links. But of the
> > non-IPSec stuff it is the best I have tried to date.
>
> I've had no problems w/ CIPE here, use it a fair bit too.
>
> Stephen
--------------------------------------------------
Matthew G. Marsh, President
Paktronix Systems LLC
1506 North 59th Street
Omaha NE 68104
Phone: (402) 932-7250 x101
Email: [EMAIL PROTECTED]
WWW: http://www.paktronix.com
--------------------------------------------------
