CIPE (Crypto IP Encapsulation) is an ongoing project to build encrypting IP routers. The protocol used is as lightweight as possible. It is designed for passing encrypted packets between prearranged routers in the form of UDP packets. This is not as flexible as IPSEC but it is enough for the original intended purpose: securely connecting subnets over an insecure transit network.
|Tags||Security Cryptography Networking Firewalls|
|Operating Systems||POSIX Linux|
Release Notes: This version runs under Linux 2.6 (as well as earlier versions). It can use the kernel crypto API and its cipher algorithms (with Linux 2.6 or 2.4.23+).
Release Notes: This release corrects the short packets test which was introduced in the previous release but was broken. It also includes the patch to work correctly with netfilter under Linux 2.4.
Release Notes: This release resolves the missing kernel symbol problem on newer Linux 2.4 kernels and adds a correct module license tag. It also corrects the small packet DOS problem.
No changes have been submitted for this release.
Release Notes: Autoconf, options to send internal keepalive pings and timeout on them. Runs under Linux 2.1.x, at least with x>=109, and 2.2.x. Device names have changed: protocol version is now a letter. Channels are allocated and deallocated dynamically. Statistics are logged upon close and then cleared. The log is simply one line from /proc/net/dev. Ciped waits for completion of ip-up before daemonizing. New configuration option for using key exchange timestamps.