At 7:55 PM +0000 1/6/10, Brian Swander wrote:
I trust my clarification (to Yaron) addressed these questions. Let
me know if there are any outstanding.
I understood the first two lines about lots of legacy systems, only a
few of which need to perform encryption." The next two lines were too
terse for me:
"Routing infrastructure that doesn't do heuristics
Requires intermediaries that can do full ESP-NULL parsing"
if the intermediaries are part of the routing infrastructure, why use
different terms in these two lines?
Also within an enterprise context, one might well be able to
configure the intermediaries with the addresses of the few machines
that perform encryption, and which therefore are allowed to
communicate with one another w/o benefit of packet inspection.
So I would not say that your response addresses my questions in the
lager context.
Steve
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
