[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IP comression - Can this be made optional?

To: henry@spsystems.net (Henry Spencer)
Subject: Re: IP comression - Can this be made optional?
From: suresh@livingston.com (Pyda Srisuresh)
Date: Wed, 2 Sep 1998 13:52:49 -0700 (PDT)
Cc: suresh@livingston.com, ipsec@tis.com
In-Reply-To: <Pine.BSI.3.91.980902153213.23809A-100000@spsystems.net> from "Henry Spencer" at Sep 2, 98 03:44:34 pm
Sender: owner-ipsec@ex.tis.com

> 
> > When you have an SA bundle consisting of AH, ESP and 
> > Compression protocols defined for a class of packets,
> > I understand, the entire SA bundle is required to be 
> > applied on packets in either direction.
> 
> No, an SA bundle is unidirectional, just like the SAs themselves.  In
> principle, the set of SAs connecting two systems could be asymmetric. 
> (And there are situations where this would be worthwhile, e.g. a highly
> asymmetric communications link might want compression on only the slow
> side.)  The "Security Architecture" draft says quite explicitly that
> there are separate SPDs for inbound and outbound traffic.
> 

Are you refering to setting up asymetric SAs without 
the aid of IKE?

cheers,
suresh

Follow-Ups:

Re: IP comression - Can this be made optional?

From: Henry Spencer <henry@spsystems.net>

References:

Re: IP comression - Can this be made optional?

From: Henry Spencer <henry@spsystems.net>

Prev by Date: Re: IP comression - Can this be made optional?
Next by Date: Re: IP compression of entire datagram
Prev by thread: Re: IP comression - Can this be made optional?
Next by thread: Re: IP comression - Can this be made optional?
Index(es):
- Main
- Thread