tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: IPsec vs ssh

On Nov 11,  1:39am, Darren Reed wrote:
} I'm experimenting with IPsec and have found that once I have
} a tunnel working between a pair of NetBSD hosts running IPsec,
} I can no longer ssh directly from one to the other - or that
} once I load ipsec.conf, ssh sessions freeze.
} The reason for this is that I suspect the SPD (ipsec.conf)
} ends up specifying that the packets for ssh between the two
} hosts are to be encrypted and wrapped up by each end point
} before being sent to the other end.

     All matching packets will be wrapped and tunneled.  However,
ssh isn't any different from any other TCP protocol in this regard.
This is NOT what's breaking ssh.  Since you didn't provide full
details, it isn't possible to determine what is wrong with your

}-- End of excerpt from Darren Reed

Home | Main Index | Thread Index | Old Index