Subject: Re: IPsec tunnel mode and IP forwarding
To: None <tech-net@netbsd.org>
From: Richard Braun <syn@sceen.net>
List: tech-net
Date: 10/01/2004 23:56:03
--4Ckj6UjgE2iN1+kY
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Oct 01, 2004 at 11:09:59PM +0200, Emmanuel Dreyfus wrote:
> Hi
>=20
> When using IPsec in tunnel mode, the machine will forward packets coming
> from and to the tunnel regardless of the net.inet.ip.forwarding setting.
> Is it on purpose or is it a bug?
>=20
> --=20
> Emmanuel Dreyfus
> Il y a 10 sortes de personnes dans le monde: ceux qui comprennent=20
> le binaire et ceux qui ne le comprennent pas.
> manu@netbsd.org

It may be on prupose for leaf tunnel mode, since this mode is intended
for hosts.

--=20
Richard Braun

--4Ckj6UjgE2iN1+kY
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (NetBSD)

iD8DBQFBXdJzBlWsEPLYRi8RAqcMAJ9RZoFXfx9HJGWPbWjnAdMpFfEPRQCgkoZw
vQ7jCR++WJZBTeMI/znIW5k=
=6CDw
-----END PGP SIGNATURE-----

--4Ckj6UjgE2iN1+kY--