[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on draft-ietf-ipsec-new-auth-00.txt

To: dpkemp@missi.ncsc.mil (David P. Kemp)
Subject: Re: Comments on draft-ietf-ipsec-new-auth-00.txt
From: Thomas Narten <narten@raleigh.ibm.com>
Date: Fri, 18 Apr 1997 09:31:20 -0300
Cc: ipsec@tis.com
In-Reply-To: Your message of "Thu, 17 Apr 1997 09:17:30 EDT." <199704171317.JAA21004@argon.ncsc.mil>
Sender: owner-ipsec@ex.tis.com

> Perhaps I am missing something important, but I've never understood the
> justification for negotiating replay window sizes.

I also agree, and have been disheartened by the number of times the
above question has been asked but not answered.  Indeed, it has been
my impression that the vast majority of IP packets are delivered in
order (one reason why TCP's header prediction works well in
practice). It is rare in practice to have packets arrive out of
order. Which begs the question of whether a window is even
needed. Does someone have data that argues otherwise?

In any case, this is certainly a receiver issue *only*.

Thomas

Follow-Ups:

Re: Comments on draft-ietf-ipsec-new-auth-00.txt

From: Daniel Harkins <dharkins@cisco.com>

Re: Comments on draft-ietf-ipsec-new-auth-00.txt

From: "C. Harald Koch" <chk@utcc.utoronto.ca>

References:

Re: Comments on draft-ietf-ipsec-new-auth-00.txt

From: dpkemp@missi.ncsc.mil (David P. Kemp)

Prev by Date: Re: Small subgroups and ISAKMP/Oakley
Next by Date: ...IPSEC-ISAKMP-07.TXT
Prev by thread: Re: Comments on draft-ietf-ipsec-new-auth-00.txt
Next by thread: Re: Comments on draft-ietf-ipsec-new-auth-00.txt
Index(es):
- Main
- Thread