Re: IPSEC tunnels for LAN-to-LAN interop issue

["Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>]

>>>>> "Paul" == Paul Koning <pkoning@xedia.com> writes:
    Paul> Keep in mind that many applications have no need for multiple tunnels
    Paul> between the same pair of security gateways.  Given high speed crypto,

  Uh, this doesn't work if you want to provide different flows with different
qualities of service. Well, it does if you can do the appropriate marking
on the VPN box, but at present, this is not likely to be widely available
until all the VPN and QOS suppliers catch up.
  Some worry about traffic analysis due to seperating the flows, but if you
mark them for different QOS, then you give up that information already.

   :!mcr!:            |  Cow#1: Are you worried about getting Mad Cow Disease?
   Michael Richardson |  Cow#2: No. I'm a duck.
 Home: <A HREF="http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html">mcr@sandelman.ottawa.on.ca</A>. PGP key available.

---

Follow-Ups:

• Re: IPSEC tunnels for LAN-to-LAN interop issue
• From: Paul Koning <pkoning@xedia.com>

References:

• RE: IPSEC tunnels for LAN-to-LAN interop issue
• From: Paul Koning <pkoning@xedia.com>

---

• Prev by Date: RE: IPSEC tunnels for LAN-to-LAN interop issue
• Next by Date: Re: IPSEC tunnels for LAN-to-LAN interop issue
• Prev by thread: RE: IPSEC tunnels for LAN-to-LAN interop issue
• Next by thread: Re: IPSEC tunnels for LAN-to-LAN interop issue
• Index(es):
  • Main
  • Thread