[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPSec Passthrough

To: "Mark Siler" <msiler@hcin.net>
Subject: Re: IPSec Passthrough
From: Francis Dupont <Francis.Dupont@enst-bretagne.fr>
Date: Thu, 01 May 2003 18:07:13 +0200
cc: ipsec@lists.tislabs.com
In-reply-to: Your message of Wed, 30 Apr 2003 10:07:43 CDT. <1772A2E865ABD411B18900508BB1B88F05ED7D8C@SVARLEXC07>
Sender: owner-ipsec@lists.tislabs.com

 In your previous mail you wrote:

   I'm curious on how IPSec passthrough works.  I know AH prevents a
   traditional NAT from occurring, but how do the SOHO routers (Linksys,
   D-Link, Ascend, etc) accomplish the IPSec passthrough?

=> I know at least one of the cited SOHO routers which just puts
on the "other side" any packet with an "unknown" protocol when
the IPsec passthrough is enabled (i.e., it behaves like a bridge).
It is a bit surprising but convenient for my usage (IPv6 over IPv4
passthrough). But some others seem to be "smart", i.e., they believe
they know IPsec and try to do "clever" things, for instance they
try to support many IPsec "clients", including of the same VPN.

Regards

Francis.Dupont@enst-bretagne.fr

Prev by Date: Re: ISAKMP and SSL
Next by Date: Re: IPSec Passthrough
Prev by thread: RE: IPSec Passthrough
Next by thread: RE: IPSec Passthrough
Index(es):
- Date
- Thread