1 # -*- mode: Outline; fill-column: 78; fill-prefix: " " -*-
3 # klips2-design-legend.txt
4 # Richard Guy Briggs <rgb@conscoop.ottawa.on.ca>
6 # RCSID $Id: klips2-design-legend.txt,v 1.7 2001/05/29 18:52:12 rgb Exp $
9 # This document is a legend of labels and acronyms on the diagram. It
10 # also acts as a very brief glossary to the rest of the klips2-design
11 # documents. Please see klips2-design.txt for an overview.
13 # The first column contains the acronym or label used. It is followed
14 # by the acronym written out in full or a very brief description.
17 KMd-1...n Key Management Daemons 1 to n
18 Routing Routing Table kernel interface
19 Policy SPDB KMd interface
20 seclev Match Packet Security Level (not yet implemented in Linux)
21 SADDR Match Packet Source Address
22 DADDR Match Packet Destination Address
23 SMASK Match Packet Source Address Network Mask
24 DMASK Match Packet Destination Address Network Mask
25 SPORT Match Packet Transport Layer Source Port Number
26 DPORT Match Packet Transport Layer Destination Port Number
27 UID Match Packet User IDentifier
28 SA Security Association
29 SAList Security Association List
30 SAID Security Association IDentifier
31 TDB Tunnel Descriptor Block
32 ESP Encapsulating Security Payload
33 IPSECdev IPSEC virtual tunnel device
34 SADB Security Association DataBase
35 SPDB Security Policy DataBase
36 SPI Security Parameters Index
37 get/set_sockopt get or set socket options
38 DROP Target DROP Packet
39 ACCEPT Target ACCEPT Packet
40 REJECT Target REJECT Packet
41 TRAP Target TRAP Packet
42 HOLD Target HOLD Packet
43 PEEK Target PEEK Packet
44 IPSEC Target IPSEC Packet
45 __..__.. PF_KEYv2 communication path
46 ___.___. User/Kernel Space demarcation