On Wed, Nov 18, 2009 at 10:00:22AM -0800, Gregory Lebovitz wrote: > Additionally it will depend on the round trip time across the network > between the two peers.
Ahh, of course. > Vendors who are selling network boxes that can do a large number of > simultaneous IKE negotiations tend to care more about simultaneous IKE SA > negotiations per second than they do the actual negotiation time of any one > single negotiation. Yes, the throughput vs. latency issues. A user might care about his/her latency (0-to-IPsec times), but a server vendor (not just a VPN box, BTW -- imagine the IPsec-protected server) might care a lot more about aggregate P1s/second. Dan _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
