Hi Greenville,
>Although RSVP's use of flowlabel does provide a simpler,
>not-munged-by-IPsec syntax for expressing a flow's identity,
>I was under the impression the flowlabel+srcaddr is semantically
>identical to the 5-tuple.
Sure you can take a 5 tuple and get a 2 tuple. But you also have to
munge down into the packet past the header in IPv4 and this can be
avoided in IPv6, and only if IPsec is not there.
IPsec is mandatory for IPv6. It will be there unless users turn it off
and I doubt that unless it performs very very bad. I don't think we can
assume IPsec will not perform good enough to be used, as engineers or
architects. So one may not be able to see the TCP port+address+proto-id
without a decrypt operation.
/jim
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
