Subject: Re: ipf-ipsec interaction
To: None <>
From: None <>
List: tech-net
Date: 03/13/2001 08:20:33
>you mean ipf + ipnat?

	ipnat is part of ipf.

>So when just applying transport mode (with only esp)
>in the release branche shouldnt be a 
>problem, even not with nat?

	for transport mode, there will be less problem.  the only problem
	i can think of is that, you cannot classify the following packet
	as "tcp packet" in ipf rule, since ipf does not chase header chain:
		IP AH TCP payload