--oLBj+sq0vYjzfsbl
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Tue, Apr 13, 2004 at 01:03:08PM +0900, Curt Sampson wrote:
> Yes. It'd be particularly handy if one could filter after IPSec
> decryption.

That's how I use it with gre, as noted previously.

For a more general solution, might there be something to achieve the
necessary plumbing tap points in the netgraph stuff FreeBSD use?

There was mention a while ago of importing the netgraph infrastrucure
(at the time, as a dependency for the FreeBSD bluetooth stack, which I
would also very much like to see..) but no further discussion since.

I don't know anything much about netgraph, and would appreciate more
info.

--
Dan.
--oLBj+sq0vYjzfsbl
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (NetBSD)

iD8DBQFAe2h+EAVxvV4N66cRAiQhAKDyUnG3Z1tBWf2nPcM5hVgP2JlLIgCg9r/2
RktyusJPvTw42AUPZPn6X6o=
=l5VK
-----END PGP SIGNATURE-----

--oLBj+sq0vYjzfsbl--