[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: inbound vs outbound?

To: mahdavi <mahdavi@sepahan.iut.ac.ir>
Subject: Re: inbound vs outbound?
From: Christophe Gouault <christophe.gouault@6wind.com>
Date: Mon, 03 Sep 2001 09:33:31 +0200
Cc: Puja Puri <puja.puri@cdac.ernet.in>, ipsec@lists.tislabs.com
Organization: 6WIND
References: <Pine.GSO.4.10.10108301015260.12559-100000@mailhub.cdac.ernet.in> <001201c1019f$6116da40$dace1dd5@mahdavi>
Sender: owner-ipsec@lists.tislabs.com

Hello,

"inbound" and "outbound" have nothing to do with IP addresses. Since your
machine forwards packets, each packet is processed twice by IPsec and is both
inbound and outbound :
first your packet is received on an interface, hence it is processed by IPsec as
"inbound". Then it is forwarded and sent on another interface : it is processed
by IPsec again, but as an "outbound" packet.

Christophe.

mahdavi wrote:

> Hi
> U R right about hosts.
> But I am to design a security gateway in hardaware that is located in heart
> of a high speed router that has many interfaces.
> no packet is generating from my machine. so with your idea there is no
> outbound there. just pay attention to this fact that every packet that is
> destined to my machine is in tunnel mode.
>
> By now tell me what is wrong with my opinion
>
> "every packet is outbound else its destination IP is IP of this machine and
> it is in tunnel mode (this security gateway) ."
> ----- Original Message -----
> From: Puja Puri <puja.puri@cdac.ernet.in>
> To: mahdavi <mahdavi@sepahan.iut.ac.ir>
> Cc: <ipsec@lists.tislabs.com>
> Sent: Thursday, 30 August, 2001 9:18 ХИН
> Subject: Re: inbound vs outbound?
>
> > I beg to defer from this point of view "that every packet that is not
> > destined for my machine is outbound". I feel that the packets that are
> > originating from ur machine are outbound and the remaining packets
> > recieved by ur machine are inbound irrespective of whether they r destined
> > for ur machine or they r forwarded(in which case they also become
> > outbound).
> >
> > Puja Puri
> > Member of Technical Staff
> > Networking and Internet  Software Group
> > C-DAC
> > Pune
> >
> > On Wed, 29 Aug 2001, mahdavi wrote:
> >
> > > Hi.
> > > In a security gateway how you can distinguish between an Inbound packet
> and outbound packet?
> > >
> > > Is this correct ?
> > > "every packet is outbound else its destination IP is IP of this machine
> (this security gateway) .
> > >
> > >
> > >

Follow-Ups:

Re: inbound vs outbound?

From: "mahdavi" <mahdavi@sepahan.iut.ac.ir>

References:

Re: inbound vs outbound?

From: "mahdavi" <mahdavi@sepahan.iut.ac.ir>

Prev by Date: Re: key management protocols
Next by Date: Re: IKEv2 stuff.. Re: More MODP Diffie-Hellman groups for IKE
Prev by thread: Re: inbound vs outbound?
Next by thread: Re: inbound vs outbound?
Index(es):
- Main
- Thread