Re: Freeswan in Debian, or: Why I am such a bad maintainer

To: Wichert Akkerman <wichert@wiggy.net>
Cc: Lupe Christoph <lupe@lupe-christoph.de>, Marc Haber <mh+debian-devel@zugschlus.de>, Rene Mayrhofer <rene.mayrhofer@gibraltar.at>, Bastian Blank <waldi@debian.org>, Dominique Kaiser <dommi_s1@gmx.net>, Giacomo Mulas <gmulas@ca.astro.it>, Steven Augart <augart@watson.ibm.com>, Anthony DeRobertis <anthony@derobert.net>, Andrew Pimlott <pimlott@idiomtech.com>, herbert@gondor.apana.org.au, Alexander Hvostov <alex@aoi.dyndns.org>, Daniel Pocock <daniel@pocock.com.au>, Russell Stuart <russell-debian-bug@stuart.id.au>, dalhagen@tele-net.net, Christoph Martin <martin@uni-mainz.de>, Alexei Ustyuzhaninov <alust@UralskyGSM.com>, Jason Spence <jspence@lightconsulting.com>, Mike Fedyk <mfedyk@matchmail.com>, Luca Fornasari <luca.fornasari@easybit.it>, Torsten Knodt <tk-debian@datas-world.de>, Christian Perrier <bubulle@debian.org>, Luk Claes <luk.claes@ugent.be>, debian-devel@lists.debian.org, Nate Carlson <natecars@natecarlson.com>
Subject: Re: Freeswan in Debian, or: Why I am such a bad maintainer
From: Dominique Kaiser <kaiser_d@gmx.net>
Date: Mon, 28 Jun 2004 22:11:32 +0200
Message-id: <[🔎] 40E07B74.6000106@gmx.net>
In-reply-to: <[🔎] 20040628193306.GN9561@wiggy.net>
References: <[🔎] 40E00DDA.3040807@gibraltar.at> <[🔎] 20040628130629.GB9561@wiggy.net> <[🔎] 20040628142423.GO6752@torres.ka0.zugschlus.de> <[🔎] 20040628143046.GH9561@wiggy.net> <[🔎] 20040628165547.GT29463@lupe-christoph.de> <[🔎] 20040628193306.GN9561@wiggy.net>

And again we arrive at the lacking docu...
- Why is it more flexible ?
- How is it different ?
- How would I do this "dummy interface" with 26 IPSEC and OpenSwan ?
- Why doesn't OpenSwan do this by default when using 26 ?
- How would I / Can I use tcpdump with this setup ?
- Is this possible with a stock 2.6 kernel ?
- and so on...
( I don't expect an answer here - I know some of the answers but not all..
this is more to demonstrate what's missing in my opinion)
- keep in mind that most people are NOT interested at all if some of
the above is in the sole "problem domain" of OpenSwan, of 2.6 kernel
or if it is a mixture of both - they want it to work smoothly and in an
intuitive way.

Just my two cents,
Dominique.

Wichert Akkerman wrote:

Previously Lupe Christoph wrote:

Such as having virtual interfaces to hang firewall rules from,
preferably one per tunnel?

You should be able to do that using dummy interfaces. Just keep in
mind that ipsec is no longer done through an interface but via a
route transform, which is a very different and more flexible approach.

Wichert.

Reply to:

Follow-Ups:
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: "Daniel Pocock" <daniel@pocock.com.au>

References:
- Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Rene Mayrhofer <rene.mayrhofer@gibraltar.at>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: lupe@lupe-christoph.de (Lupe Christoph)
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Wichert Akkerman <wichert@wiggy.net>

Prev by Date: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Next by Date: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Previous by thread: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Next by thread: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Index(es):
- Date
- Thread