I think doing this would cause clients to calculate the puzzle solution,
when in fact they don’t have to, and sending back the COOKIE would be
enough.
What I envision is for the IKE gateway to measure its load (probably based
on amount of half-open IKE SAs). As long as the load level is low, th
I think doing this would cause clients to calculate the puzzle solution, when
in fact they don’t have to, and sending back the COOKIE would be enough.
What I envision is for the IKE gateway to measure its load (probably based on
amount of half-open IKE SAs). As long as the load level is low, the
Hi Yoav,
did you consider the following initial exchange:
Initiator Responder
---
HDR(A,0), SAi1, KEi, Ni -->
<-- HDR(A,0), N(COOKIE), N(PUZZLE)
(supported i
