| Rev | Author | # | Line |
|---|---|---|---|
| 1 | CraigBox | 1 | __26sec__ is the name for the [IPSec] implementation in the Linux 2.6 kernel. It is also known as "NET_KEY" (it's name in .config). |
| 2 | |||
| 3 | It is based on the kernel API from the [KAME project|http://www.kame.net/project-overview.html], a Japanese project to bring IPsec to [BSD] operating systems. | ||
| 4 | |||
| 5 | 26sec does away with the KLIPS system of having an ipsec0 device to route traffic over and firewall on. Shorewall have some [patches to netfilter|http://shorewall.net/pub/shorewall/contrib/IPSEC/] for matching IPSec traffic using the 26sec API. | ||
| 6 | |||
| 7 | There are two sets of userspace tools (and several forks of one of them!) you can use with 26sec: | ||
| 8 | |||
| 9 | * the *S/WAN's (FreeSwan, OpenSwan and StrongSwan) | ||
| 10 | * KAME's IpsecTools | ||
| 11 | |||
| 12 | See also: | ||
| 13 | |||
| 6 | CraigBox | 14 | * [Openswan's wiki page on 26sec|http://wiki.openswan.org/index.php/26sec] |
| 2 | CraigBox | 15 | * [Ken Bantoft's (OpenS/WAN developer) talk on the future of IPsec on Linux|http://www.xelerance.com/talks/linuxtag2004/] |
| 7 | AndreasSteffen | 16 | * [Andreas Steffen's (strongSwan developer) talk on the Advanced Features of Linux strongSwan|http://www.strongswan.org/docs/LinuxTag2005-strongSwan.pdf] |
| 5 | CraigBox | 17 | * [IPsec using Linux 2.6 and Shorewall|http://www.shorewall.net/IPSEC-2.6.html] |
| 1 | CraigBox | 18 | * [the IPSEC HowTo|http://www.ipsec-howto.org/] |
| 19 | * [the LARTC section on IPSEC|http://lartc.org/howto/lartc.ipsec.html] | ||
| 9 | MohanRaphel | 20 | * [Openswan Book from the developers of Openswan |http://www.packtpub.com/openswan/book] |
| 4 | CraigBox | 21 | |
| 22 | ---- | ||
| 23 | CategorySecurity |
lib/blame.php:177: Warning: Invalid argument supplied for foreach()