Re: Freeswan in Debian, or: Why I am such a bad maintainer

To: Marc Haber <mh+debian-devel@zugschlus.de>
Cc: Wichert Akkerman <wichert@wiggy.net>, Rene Mayrhofer <rene.mayrhofer@gibraltar.at>, Bastian Blank <waldi@debian.org>, Dominique Kaiser <dommi_s1@gmx.net>, Giacomo Mulas <gmulas@ca.astro.it>, Steven Augart <augart@watson.ibm.com>, Lupe Christoph <lupe@lupe-christoph.de>, Anthony DeRobertis <anthony@derobert.net>, Andrew Pimlott <pimlott@idiomtech.com>, herbert@gondor.apana.org.au, Alexander Hvostov <alex@aoi.dyndns.org>, Daniel Pocock <daniel@pocock.com.au>, Russell Stuart <russell-debian-bug@stuart.id.au>, dalhagen@tele-net.net, Christoph Martin <martin@uni-mainz.de>, Alexei Ustyuzhaninov <alust@UralskyGSM.com>, Jason Spence <jspence@lightconsulting.com>, Mike Fedyk <mfedyk@matchmail.com>, Luca Fornasari <luca.fornasari@easybit.it>, Torsten Knodt <tk-debian@datas-world.de>, Christian Perrier <bubulle@debian.org>, Luk Claes <luk.claes@ugent.be>, debian-devel@lists.debian.org
Subject: Re: Freeswan in Debian, or: Why I am such a bad maintainer
From: Nate Carlson <natecars@natecarlson.com>
Date: Mon, 28 Jun 2004 09:30:33 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.58.0406280927510.17041@conformity.technicality.org>
In-reply-to: <[🔎] 20040628142423.GO6752@torres.ka0.zugschlus.de>
References: <[🔎] 40E00DDA.3040807@gibraltar.at> <[🔎] 20040628130629.GB9561@wiggy.net> <[🔎] 20040628142423.GO6752@torres.ka0.zugschlus.de>

On Mon, 28 Jun 2004, Marc Haber wrote:
> Linux 2.6 ipsec sucks, because it makes packet filtering much harder and
> more complicated, and debugging nearly impossible because you don't see
> the unencrypted packet with tcpdump.

26sec (the 2.6 stack) also makes NAT'ing connections behind an IPSec peer 
more difficult, too.

Apparently, there are new patches for Netfilter in the pom that are
supposed to help; I haven't yet had a chance to try them, though.

I'm still running KLIPS for now, even on 2.6. I miss my ipsec interfaces
with 26sec.  :)

------------------------------------------------------------------------
| nate carlson | natecars@natecarlson.com | http://www.natecarlson.com |
|       depriving some poor village of its idiot since 1981            |
------------------------------------------------------------------------

Reply to:

References:
- Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Rene Mayrhofer <rene.mayrhofer@gibraltar.at>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Freeswan in Debian, or: Why I am such a bad maintainer
  - From: Marc Haber <mh+debian-devel@zugschlus.de>

Prev by Date: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Next by Date: Re: [RANT] French translation for debconf templates stucked at 90% : analysis
Previous by thread: Re: Freeswan in Debian, or: Why I am such a bad maintainer
Next by thread: Re: Freeswan in Debian, or: Why I am NOT such a bad maintainer
Index(es):
- Date
- Thread