Steve _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
In most contexts, there is no real benefit to using two SAs (AH +
ESP) as you describe. I agree that, in almost every case, just using
ESP will suffice. Using ESP in tunnel mode is certainly good enough,
and less expensive than 2 SAs.
- Re: [IPsec] Does ESP provide all functionali... Yoav Nir
- Re: [IPsec] Does ESP provide all functio... Richard Graveman
- Re: [IPsec] Does ESP provide all functio... Paul Wouters
- Re: [IPsec] Does ESP provide all fun... Frederic Detienne
- Re: [IPsec] Does ESP provide all... Nico Williams
- Re: [IPsec] Does ESP provid... Frederic Detienne
- Re: [IPsec] Does ESP provide all... Paul Wouters
- Re: [IPsec] Does ESP provid... Frederic Detienne
- Re: [IPsec] Does ESP provide all... Scott Fluhrer (sfluhrer)
- Re: [IPsec] Does ESP provid... Frederic Detienne
- Re: [IPsec] Does ESP provide all functionality of... Stephen Kent
- Re: [IPsec] Does ESP provide all functionality of... Steven Bellovin
- Re: [IPsec] Does ESP provide all functionali... Stephen Kent
- Re: [IPsec] Does ESP provide all functionali... Vilhelm Jutvik
- Re: [IPsec] Does ESP provide all functio... Paul Wouters
- Re: [IPsec] Does ESP provide all fun... Yaron Sheffer
- Re: [IPsec] Does ESP provide all functio... Tero Kivinen
- Re: [IPsec] Does ESP provide all functionality of... Mike Sullenberger
