[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ipsec] big IKE packets



>>>>> "Yoav" == Yoav Nir <ynir@checkpoint.com> writes:

 Yoav> To quite a large extent.  If that equipment worked correctly,
 Yoav> it would be able to work with fragments, and we could do with
 Yoav> UDP and ESP, no need for NAT-T.

 Yoav> As it is, TCP is supported by all equipment, and is implemented
 Yoav> in every operating system.  Who uses SCTP?

Not many people use SCTP.  But it is an IETF standard.  It has been
suggested as a suitable protocol.  If we decide not to use it for
technical reasons, that's fine.  But I don't think "we can't use good
protocol X because there are crummy network equipment vendors who mess
up that protocol" is a good policy.

     paul


_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec