> > It will take several years before implementations start to implement > WESP, and even more years before hardware chips support WESP. Most of > the IPsec users are still using IKEv1, even when we published IKEv2 > 2005, i.e. 4 years ago. And IKEv2 draft was finished and publication > was requested at end of 2003. > > So stable draft which could be used to implement IKEv2 was ready 6 > years ago, and while there are several implementations out, people are > still using IKEv1. Also before WESP can be used people would first > need to move to IKEv2 anyways...
Not all applications of WESP (or AH and ESP for that matter) would require an IKEv2 negotiation. You could use WESP as a protocol for routing protocol authentication without an IKEv2 extension. And the reason why you might want to use WESP is to prioritize certain protocol packets over the others, as is normally done for v4 control packets (e.g. OSPFv3 HELLOs and ACKs over other OSPFv3 packets) Cheers, Manav _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
