Re: inbound vs outbound?

["mahdavi" <mahdavi@sepahan.iut.ac.ir>]

Hi.
You R right.
But pay attention to this fact that RFC is for all Implmentations.
Now just verify this pharase ( if it is correct, and if it is not tell me
Y ).

"IF a regular packet received by our router and it was not tunneld to this
router it is enough to apply just outbound process. "

If above sentence is not correct let me know. (think about a security
gateway --in arouter)

sincerely yours

mahdavi

>
> In RFC2401's terminology,
> an "inbound" packet means a packet received on an interface,
> an "outbound" packet means a packet sent on an interface.
>
> I think you shouldn't use the terms "inbound" and "outbound" if you wish
> to express another concept.
>
> RFC2401, paragraph 4.4, states that "The SPD must be consulted during
> the processing of all traffic (INBOUND and OUTBOUND), including
> non-IPsec traffic." and also "Thus the administrative interface must
> allow the user (or system administrator) to specify the security
> processing to be applied to any packet entering or exiting the system,
> on a packet by packet basis."
>
> It results that the SPD is consulted twice for forwarded packets.
>
>
> There are not necessarily two physically separate SPDs, but if you only
> have one SPD, you should add the "direction (inbound/outbound)" info in
> each entry.
>

---

References:

• Re: inbound vs outbound?
• From: "mahdavi" <mahdavi@sepahan.iut.ac.ir>
• Re: inbound vs outbound?
• From: Christophe Gouault <christophe.gouault@6wind.com>

---

• Prev by Date: Re: inbound vs outbound?
• Next by Date: Re: inbound vs outbound?
• Prev by thread: Re: inbound vs outbound?
• Next by thread: Re: inbound vs outbound?
• Index(es):
  • Main
  • Thread