Subject: Re: ipf-ipsec interaction
To: None <email@example.com>
From: None <firstname.lastname@example.org>
Date: 03/13/2001 08:20:33
>you mean ipf + ipnat?
ipnat is part of ipf.
>So when just applying transport mode (with only esp)
>in the release branche shouldnt be a
>problem, even not with nat?
for transport mode, there will be less problem. the only problem
i can think of is that, you cannot classify the following packet
as "tcp packet" in ipf rule, since ipf does not chase header chain:
IP AH TCP payload