At 9:49 AM -0500 4/9/12, <[email protected]> wrote:
>At 4:50 PM +0000 4/6/12, Xiangyang zhang wrote:
Stephen,
You understand this method very well. The disadvantage is the possible
severity of out of order delivery. Even with single SA, it can also
cause the out of order problem. As for re-order, just like TCP reorder
or IP reassembly, it can be done at intermediate node or end host.
The TCP and IP specs do not envision an intermediary trying to put
packets back in order or performing reassembly. When middle bioxes
do this performance often suffers.
In fact, reassembly at intermediate nodes is not possible at all,
because IP can route packets on several routes. The full stream of
packets is only available at the end points, so that is the only
place where reassembly can be done.
paul
Paul,
I agree in general, but I was considering the case where the
intermediate node is very enough to the destination.
Steve
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
