[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Re[2]: IPSEC document reading party!
>What John was trying to say, I think, is that tunneled ESP without
>encryption and _integrity_ would be better served by just using
>IP-in-IP.
I'd agree with that. But that wasn't clear from John's message. I'll add a
statement to this regard in the next rev of the DOI.
Derrell
>-----Original Message-----
>From: svakil@usr.com [SMTP:svakil@usr.com]
>Sent: Saturday, December 13, 1997 1:49 PM
>To: gordo@telsur.cl; tytso@MIT.EDU; John Ioannidis
>Cc: ipsec@tis.com
>Subject: Re[2]: IPSEC document reading party!
>
> ESP tunneling without encryption cannot be substituted with IP-in-IP
> tunneling. It provides authentication and integrity services to the
> encapsulated packet. Note that this is different from AH which will
Follow-Ups:
References: