current-users: Re: IPsec, NAT, and Firewalling

Subject: Re: IPsec, NAT, and Firewalling
To: None <current-users@netbsd.org>
From: None <itojun@iijlab.net>
List: current-users
Date: 01/23/2001 11:15:28

>	if it is the inbound traffic, i may have a workaround.  however, with
>	the workaround the risk of kernel stack overflow gets much higher.
>	(for example, i can paste many ESP headers onto a single packet to
>	make your kernel stack bomb)  I will make a patch for it.

	sorry, i was dreaming.  it is not that easy.

itojun