[Openswan Users] Getting a handle on ip xfrm
Paul Wouters
paul at xelerance.com
Wed Mar 10 14:02:08 EST 2010
On Wed, 10 Mar 2010, Whit Blauvelt wrote:
> Just to make understanding "ip xfrm" more fun, there's nothing more than the
> raw syntax on the iproute2 man page for it (as compared to other commands,
> which get some explanation), and there's damn little discussion of it on the
And it took years of complaining from like 2000 (at OLS) until like 2005 before
it even got into the man page.....
> web at all. Even lartc.org (Linux Advanced Routing & Traffic Control -
> pretty much the standard reference) has no mention of "xfrm" at all.
lartc.org got pretty much abandoned years ago by its maintainer. And they never
had anything good on ipsec because of a strong bias towards racoon only.
don't forget "ip xfrm state".
Paul
More information about the Users
mailing list