Provided by: freebsd-manpages_6.2-1_all
enc - Encapsulating Interface
To compile this driver into the kernel, place the following line in your
kernel configuration file:
The enc interface is a software loopback mechanism that allows hosts or
firewalls to filter fast_ipsec(4) traffic using any firewall package that
hooks in via the pfil(9) framework.
The enc interface allows an administrator to see outgoing packets before
they have been processed by fast_ipsec(4), or incoming packets after they
have been similarly processed, via tcpdump(8).
The “enc0” interface inherits all IPsec traffic. Thus all IPsec traffic
can be filtered based on “enc0”, and all IPsec traffic could be seen by
invoking tcpdump(8) on the “enc0” interface.
To see all outgoing packets before they have been processed via
fast_ipsec(4), or all incoming packets after they have been similarly
# tcpdump -i enc0
tcpdump(1), bpf(4), fast_ipsec(4), ipf(4), ipfw(4), pf(4)