[Swan] How to recognize an HTTP request that passes through the IPSec channel?
Paul Wouters
paul at nohats.ca
Sun May 29 18:13:19 UTC 2016
You can limit the tunnel to only allow port 80 traffic using leftprotoport=tcp/80 and rightprotoport=tcp/0
But then you still need to be sure unencrypted traffic is blocked if that's what you want to happen.
Sent from my iPhone
> On May 29, 2016, at 03:20, Michael Furman <michael_furman at hotmail.com> wrote:
>
> I need to recognize an HTTP request that passes through the IPSec channel:
> I need to allow access to my application only to these HTTP requests.
>
> Do you know if there is any HTTP attribute or HTTP parameter that I can use?
>
>
> I do not want to use iptables at this point of development and search for alternative solution.
>
> Thank you for your help in advance!
>
>
> _______________________________________________
> Swan mailing list
> Swan at lists.libreswan.org
> https://lists.libreswan.org/mailman/listinfo/swan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160529/6ae0de3c/attachment-0001.html>
More information about the Swan
mailing list