[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Tunnel mode



Cannot answer the other question, since I've always considered
intermediate authentication impractical.

> From: Robert Glenn  <glenn@snad.ncsl.nist.gov>
> Next topic deals with the ESP Tunnel mode.  On the clear IPv4 packet,
> what should the TTL be set to?  My initial take was to set it to the
> value in the encrypted packet, but later decided to set it to MAXTTL
> and let the other end of the tunnel worry about the real TTL.  It makes
> for some interesting observations when using traceroute.   Also should
> this issue be mentioned in the spec. or is it just an implementation
> issue?
>
Try reading RFC-1853.

Bill.Simpson@um.cc.umich.edu
          Key fingerprint =  2E 07 23 03 C5 62 70 D3  59 B1 4F 5E 1D C2 C1 A2