securing 6bone tunnels

James Housley jim@thehousleys.net
Fri, 09 Mar 2001 11:27:34 -0500

Previous message: securing 6bone tunnels
Next message: securing 6bone tunnels
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jun-ichiro itojun Hagino wrote:
> 
<<snip>> 
>         to avoid attacks, I would like to encourage 6bone tunnel operators
>         to establish IPv4 transport-mode AH (or IPv6-over-IPv4 tunnel
>         mode AH) relationship with your peer.  how to do this is implementation
>         dependent.  for KAME-based platforms, you'd need to get the latest
>         KAME tree from ftp://ftp.kame.net/pub/kame/snap/ (*BSD releases
>         do not have enough policy checking code).
> 

What is the oldest SNAP that has the required policy checking?

Jim
-- 
/"\   ASCII Ribbon Campaign  .
\ / - NO HTML/RTF in e-mail  .
 X  - NO Word docs in e-mail .
/ \ -----------------------------------------------------------------
jeh@FreeBSD.org      http://www.FreeBSD.org     The Power to Serve
jim@TheHousleys.Net  http://www.TheHousleys.net
---------------------------------------------------------------------
"It's a damn poor mind that can only think of one way to
spell a word."
    -- -Andrew Jackson

Previous message: securing 6bone tunnels
Next message: securing 6bone tunnels
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]