[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

allowing transport mode...

To: "'ipsec@lists.tislabs.com'" <ipsec@lists.tislabs.com>
Subject: allowing transport mode...
From: "Jain, Gautam" <GJain@smartpipes.com>
Date: Tue, 24 Apr 2001 17:08:08 -0000
Sender: owner-ipsec@lists.tislabs.com

With reference to section 4.1 in RFC 2401 I have a question on the following
statement.

Note that for the case where traffic is destined for a
security gateway, e.g., SNMP commands, the security gateway is acting
as a host and transport mode is allowed.  

What is the rationale behind allowing transport mode in case
of one of the peers being a security gateway. One seems to be
network management. What others would allow a security gateway
to act as a host in the ipsec world. If we were to collectively ( instead of
identifying
applications that allow this ) say, what would we the bottomline
for allowing transport mode in case of a security gateway acting
as a host in IPSec.

gautam

Follow-Ups:

Re: allowing transport mode...

From: Renu Agarwal <ragarwal@globespan.net>

Prev by Date: Re: Misc. issues: Inbound SA triple identification / Inbound&Outbound SA, selectors exchange
Next by Date: tunnle mode SAs...
Next by thread: Re: help
Index(es):
- Main
- Thread