[Openswan Users] [Openswan dev] controlling the size of packets on vpn

[Michael Richardson]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>>>>> "siddhesh" == siddhesh divekar <siddhesh.divekar at gmail.com> writes:
    siddhesh> Hi, I had a query about the packet size that openswan
    siddhesh> encrypts.  Is there any way by which we can control the
    siddhesh> packet size that the openswan is encrypting.
 
  Why would you want to do that?  You can't drop data at the end of the
packet, you have to encrypt everything (or nothing). 
  Maybe you explain what the actual problem you are trying to solve is.

  The packet size is determine by the end system, and limitations of the
size of the local media. (i.e 100Mb/s ethernet is 1500 bytes). In
gateway mode that's determined by the system behind the gateway.
  In /32 or transport mode, that end system is the TCP or UDP stack.

- -- 
]            Bear: "Me, I'm just the shape of a bear."          |  firewalls  [
]   Michael Richardson,    Xelerance Corporation, Ottawa, ON    |net architect[
] mcr at xelerance.com      http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Finger me for keys

iQEVAwUBRrMg3oCLcPvd0N1lAQIc2gf8CGysXt8Fr+0hsstgtUPDu/CFiyaGlF7f
EQtmLi/Mc4uTmvoKWuPowVwxsjwcxV8Bhm6feOSOybNoi+tEFc1d6vcHxvgiH1CB
WPdFdP8PUMQ//3CnTpcSqB7JY21MlmrnCrnPw6dM6nXPI9afuyCYZZke4ApcTcvH
omt8/mRJN36QL+bhFts5C7k7ND80lJKOb9zHS8OYpdUWP+qkHEVbjTuJWQO2R8mP
vFFMxAvejD4Zo/Ms0HyJUUHdC0ytVIRbRQ4eo/wmyxpsIJ5Z2Wv2Z6Bn6hwAkTlf
6eCDcrsyMoeBJMbDwLdboxXzl/dPl0GxIPpz4tv7F1s1/aO0xdeHjQ==
=OEm/
-----END PGP SIGNATURE-----