> method (RFC 5879)? Or else is there anything missing in WESP that we > should pay attention to, for example, maybe it doesn't support specific > IV or ICV sizes that those non IETF-goers are using?
This stumped me for some time and i went back to read RFC 5840. The HdrLen in the WESP header will always point to the start of the unencrypted payload for the devices to inspect. No matter what IV or ICV size folks use, WESP will always work (contrary to claims made by a few individuals on the list). Jack _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
