[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: null encryption
Perry E. Metzger writes:
>
> Juha Heinanen writes:
> > Perry E. Metzger writes:
> >
> > > > further, where is gre standardized?
> > >
> > > RFC's 1701 & 1702
> >
> > This memo does not specify an Internet standard of any kind.
>
> IPSec is not a standard, either. Just a proposed standard.
>
> GRE is very widely deployed at the moment.
>
> Perry
Many vendors have placed a high priority on verifying that their IPsec
packages interoperate with their peers' systems. I do not know of
similar efforts being applied to GRE. Other tunneling protocols that
*use* GRE are being implemented, but that's not the same thing.
I was not surprised to see a suggestion to use null transforms in IPsec
as a "well known", "widely available" tunneling solution. An obvious
bonus is that it's trivial to add high quality protection services to
such a solution should the necessity arise.
--
Leonard Samuelson, Ascend Communications, Inc. 614-760-4024
NOTE: These are my *opinions*, and as such, obviously do not represent the
views of my employer.
References: