[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: IPSec Implementation

To: "Michael Richardson" <mcr@sandelman.ottawa.on.ca>
Subject: RE: IPSec Implementation
From: "George Hadjichristofi" <ghadjich@vt.edu>
Date: Wed, 21 May 2003 00:25:19 -0400
Cc: "Ipsec" <ipsec@lists.tislabs.com>
Importance: Normal
In-reply-to: <NGBBJKFPKLLPDJAPGACCIEHDDHAA.ghadjich@vt.edu>
Sender: owner-ipsec@lists.tislabs.com

Please disregard the previous email.
I got confused :-)

Thank you,
George

*************************************************
George C. Hadjichristofi
Graduate Student
Bradley Department of Electrical and Computer Engineering
Virginia Tech,Blacksburg,VA 24061,U.S.A
TEL:(540)-951-8936
*************************************************

-----Original Message-----
From: George Hadjichristofi [mailto:ghadjich@vt.edu]
Sent: Wednesday, May 21, 2003 12:22 AM
To: Michael Richardson
Cc: Ipsec
Subject: RE: IPSec Implementation


Hi Michael,

Which implementation has the best documentation?
Which one is the "easiest" to understand and modify?

Thank you,
George

*************************************************
George C. Hadjichristofi
Graduate Student
Bradley Department of Electrical and Computer Engineering
Virginia Tech,Blacksburg,VA 24061,U.S.A
TEL:(540)-951-8936
*************************************************

-----Original Message-----
From: Michael Richardson [mailto:mcr@sandelman.ottawa.on.ca]
Sent: Tuesday, May 20, 2003 1:49 PM
To: George Hadjichristofi
Cc: Ipsec
Subject: Re: IPSec Implementation


-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "George" == George Hadjichristofi <ghadjich@vt.edu> writes:
    George> I have a question related to the different implementations of
    George> IPSec.

    George> I am currently looking into the FreeBSD, FreeSWAN Linux, and the
    George> one that
    George> comes with the new version of linux.

  Best documented would be FreeS/WAN.

  Easiest to modify for someone who has never looked at the code, might be
*BSD. I'd say that the NetBSD 1.6 code is probably the easiest to
understand,
because it is the least efficient - i.e. most poorly optimized!! That will
change very soon, I think.
  Easiest to test with would be FreeS/WAN, because it has "make check" that
runs about 100 test cases using User-Mode-Linux.

  I have (intentionally) never looked at the Linux 2.5 code, so I can not
comment.

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls
[
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net
architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device
driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security
guy"); [

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBPspqo4qHRg3pndX9AQEaFgP8CaTJoH7jGhr1XBOUnMi2Og4hfUg54nTq
HI1i2288T4R/pGfQi8XgbT8ywkNw+l3tf6z6WEIG3m4v5IakdirE7RQYXYxzdGnS
U6LwniMTAFpsDUdnKKFzKX4aSh+yjuWPmAq0q+6Bw2x/EBDi32AMJnTivDB6C92V
cixTdwo8saI=
=3Kl1
-----END PGP SIGNATURE-----

References:
- RE: IPSec Implementation
  - From: "George Hadjichristofi" <ghadjich@vt.edu>

Prev by Date: Re: Confirm decision on identity handling.
Next by Date: RE: IPSec Implementation
Prev by thread: RE: IPSec Implementation
Next by thread: I-D ACTION:draft-ietf-ipsec-ikev2-algorithms-00.txt
Index(es):
- Date
- Thread