[Openswan Users] IPsec in transport mode only for certain ports

Martin Thurau martin.thurau at gmail.com
Mon Jun 16 08:30:46 EDT 2008


I have a monitoring server (Nagios) which retrieves SNMP data from
several Windows Hosts. Since our internal security policy requires
every XXX traffic to be encrypted I used openswan to set up an
encrypted host-to-host connection between the host.
I'm using transport mode and PSK (which is okay since it is only a
hand full of hosts).

I would like to know if it would be possible to tell openswan only to
encrypt certain traffic (on port based rules, in my case UDP ports 161
and 162). On the windows side I can choose the traffic which I would
like to be encrypted but on the linux side I don't see such an option.

Martin Thurau

More information about the Users mailing list