[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt

To: Steve Dispensa <dispensa@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt
From: Stephen Kent <kent@xxxxxxx>
Date: Thu, 2 Jan 2003 13:01:34 -0500
Cc: ipsec@xxxxxxxxxxxxxxxxx
In-reply-to: <>
References: <200212231255.HAA27622@ietf.org> <1040763337.6761.26.camel@stratocaster.positivenetworks.net> <3E0B24C7.2000908@F-Secure.com> <>
Sender: owner-ipsec@xxxxxxxxxxxxxxxxx

At 11:16 AM -0600 1/2/03, Steve Dispensa wrote:

<SNIP>

Not incorrect, just dumb. However, why again is tunnel mode not a 'must'? It seems like an exception case. No IPSEC mode is specified for other traffic; it just matches by policy (or not). We have singled out L2TP as a particular traffic type for which compliant implementations need not bother supporting tunnel mode. Seems oddly arbitrary, and based on an expected implementation that (for me) doesn't work well.

-sd

The IPsec WG didn't specify how to use IPsec with L2TP; the L2TP WG did. We pointed out why we believed tunnel mode was preferable, but they choose to use transport mode instead, perhaps to reduce per-packet overhead.

Steve

References:
- Re: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt
  - From: Steve Dispensa

Prev by Date: Re: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt
Next by Date: Re: Proposed text changes to ESPbis and AHbis for multicast support
Previous by thread: Re: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt
Next by thread: Re: Proposed text changes to ESPbis and AHbis for multicast support
Index(es):
- Date
- Thread