>
>Unfortunately, the kernel does not encrypt incoming packages any more. tcpdump
>reveals, that all received replies (I tested it with ping) are forwarded
>unencrypted, because they are visible on my firewall instead of being
>encrypted. Is this a known problem? Is bridging and IPSEC (maybe with
>masquerading) currently not supported? Or should I forward this issue to
>another mailing list?
Sounds like those packets are bridged rather than routed (or so it
sounds). See if that's the case. Check
http://www.imagestream.com/~josh/PacketFlow-new.png for details.
You could try `ebtables -t broute -j DROP` to force all packets to be
routed.
-`J'
--
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
