[Swan] How to recognize an HTTP request that passes through the IPSec channel?
paul at nohats.ca
Sun May 29 18:13:19 UTC 2016
You can limit the tunnel to only allow port 80 traffic using leftprotoport=tcp/80 and rightprotoport=tcp/0
But then you still need to be sure unencrypted traffic is blocked if that's what you want to happen.
Sent from my iPhone
> On May 29, 2016, at 03:20, Michael Furman <michael_furman at hotmail.com> wrote:
> I need to recognize an HTTP request that passes through the IPSec channel:
> I need to allow access to my application only to these HTTP requests.
> Do you know if there is any HTTP attribute or HTTP parameter that I can use?
> I do not want to use iptables at this point of development and search for alternative solution.
> Thank you for your help in advance!
> Swan mailing list
> Swan at lists.libreswan.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Swan