[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

No Subject

It may be beneficial to break out the negotiation into separate
parts (key exchange methods, shared key methods, digital signature
methods), but care should be taken to avoid unnessesary chit chat
since this will drastically impact TCP setup time.

For a performance boost, systems could piggy back the TCP SYN and
ACK/SYN packets along with the IPSP negotiation messages for faster
TCP setup.  This would suggest using an IP option as opposed to an
encapsulation method.  On the other hand, encapsulation would seem
to be a better way to link subnet's together.

Comments?


brad

Prev by Date: Re: Use of DNS to distribute keys
Next by Date: No Subject
Prev by thread: Re: >Integrated Network Laye
Next by thread: No Subject
Index(es):
- Main
- Thread