[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: AH (without ESP) on a secure gateway

To: mcr@sandelman.ottawa.on.ca, Stephen Kent <kent@bbn.com>
Subject: Re[2]: AH (without ESP) on a secure gateway
From: "Whelan, Bill" <bwhelan@nei.com>
Date: Wed, 04 Dec 96 08:29:49 EST
Cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com

>I maintained that it makes sense to use AH between a pair of firewalls 
>ONLY if the header is applied to a tunneled SA.  Once we agree on that, 
>the rest ought to be easy.

I agree (now :-)) completely.  This discussion started when something which 
was obvious to most people was not obvious to me.  It appeared the document 
allowed (advocated?) transport mode on a secure gateway which made no sense 
to me.

But then I've always subscribed to the philosophy that "it is better to 
state the obvious than to assume everyone knows it!"

Sorry for the confusion and thanks to everyone for straightening me out.

Bill

Follow-Ups:

Re[2]: AH (without ESP) on a secure gateway

From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: ISAKMP DELETE payload
Next by Date: Re: ISAKMP DELETE payload
Prev by thread: Re: AH (without ESP) on a secure gateway
Next by thread: Re[2]: AH (without ESP) on a secure gateway
Index(es):
- Main
- Thread