[redhat-lspp] RE: [RFC] [MLSXFRM 00/04] Granular IPSec associations for use in MLS environments

Venkat Yekkirala vyekkirala at TrustedCS.com
Fri Jun 16 17:12:34 UTC 2006

Previous message (by thread): [redhat-lspp] RE: [RFC] [MLSXFRM 00/04] Granular IPSec associations for use in MLS environments
Next message (by thread): [redhat-lspp] [RFC] [MLSXFRM 01/04] Add support to core networking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > is it just a matter of how we configure the policy rules 
> for polmatch?
> 
> Actually, it would be the ranged SA labels (defined in the 
> xfrm policy), used
> as the target by sendto and recvfrom.
and used as the subject in the polmatch check, yes.

Previous message (by thread): [redhat-lspp] RE: [RFC] [MLSXFRM 00/04] Granular IPSec associations for use in MLS environments
Next message (by thread): [redhat-lspp] [RFC] [MLSXFRM 01/04] Add support to core networking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the redhat-lspp mailing list