Re[2]: PPP over IPSec (without L2TP)?

[Jim Tiller <tiller_j@ins.com>]

Hello John,

Shriver> L2TP provides the prevention of packet reordering that is REQUIRED by PPP.
Shriver> The PPP protocol assumes that packets under it will never be reordered.  PPP
Shriver> would not work directly on top of IPSec, since IPSec does not offer a
Shriver> service with any assurance of packet ordering.

Excuse my ignorance, but doesn't IPSec and IP handle this in
layer three and four? I'm personally torn on the use of L2TP
over IPSec, I see certain implementations that can benefit,
but the reasons MS gives do not impress me.
Any comments are welcome.

AtDhVaAnNkCsE
Best regards,
Jim Tiller, CISSP, MCSE+I, CCDA
james_tiller@ins.com
Network Security Consultant, INS
Tampa, Florida

"Faber est suae quisque fortunae." 
        - Appius Claudius Caecus


Thursday, October 14, 1999, 8:33:51 AM, you wrote:

Shriver> L2TP provides the prevention of packet reordering that is REQUIRED by PPP.
Shriver> The PPP protocol assumes that packets under it will never be reordered.  PPP
Shriver> would not work directly on top of IPSec, since IPSec does not offer a
Shriver> service with any assurance of packet ordering.

Shriver> The optional flow control for L2TP can also be used wisely to provide better
Shriver> performance (lower packet loss).

Shriver> Also, on Windows Dial-Up Networking, it provides a comfortable user model.
Shriver> This is not to be taken lightly.

---

Follow-Ups:

• Re[2]: PPP over IPSec (without L2TP)?
• From: Stephen Kent <kent@bbn.com>

References:

• RE: PPP over IPSec (without L2TP)?
• From: "Shriver, John" <john.shriver@intel.com>

---

• Prev by Date: Re: Racing QM Initiator's
• Next by Date: Re[2]: PPP over IPSec (without L2TP)?
• Prev by thread: Re: PPP over IPSec (without L2TP)?
• Next by thread: Re[2]: PPP over IPSec (without L2TP)?
• Index(es):
  • Main
  • Thread