[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Enterprise Analysis DSTM Issue

To: Tim Chown <tjc@ecs.soton.ac.uk>
Subject: Re: Enterprise Analysis DSTM Issue
From: Kurt Erik Lindqvist <kurtis@kurtis.pp.se>
Date: Thu, 11 Aug 2005 11:07:16 +0200
Cc: v6ops@ops.ietf.org
In-reply-to: <20050810131243.GN14462@login.ecs.soton.ac.uk>
References: <936A4045C332714F975800409DE09240C47B2F@tayexc14.americas.cpqcorp.net> <D717BC67-C0ED-47A0-9675-38E7B833145E@cisco.com> <20050809211354.GD27778@login.ecs.soton.ac.uk> <3E118202-8B18-4173-953D-419A2BBD3F74@cisco.com> <20050810131243.GN14462@login.ecs.soton.ac.uk>


(this is somewhat off-topic I guess)

On 10 aug 2005, at 15.12, Tim Chown wrote:

I think for the majority of cases/networks that's true. But I have spoken to people recently who believe (conventional) dual-stack adds to security complexity, and they'd like to run one protocol only.

I must miss something here. In what way would these people think the security model differed from any other tunnelling model for security? I.e the payload is the payload is the payload, and from my experience that is what is hard to secure...the only way to protect them then is to either leave out the v4 Internet (which might not be a bad idea from security POV :-) or do translation?

- kurtis -

Follow-Ups:
- Re: Enterprise Analysis DSTM Issue
  - From: Tim Chown <tjc@ecs.soton.ac.uk>

References:
- Enterprise Analysis DSTM Issue
  - From: "Bound, Jim" <Jim.Bound@hp.com>
- Re: Enterprise Analysis DSTM Issue
  - From: Fred Baker <fred@cisco.com>
- Re: Enterprise Analysis DSTM Issue
  - From: Tim Chown <tjc@ecs.soton.ac.uk>
- Re: Enterprise Analysis DSTM Issue
  - From: Fred Baker <fred@cisco.com>
- Re: Enterprise Analysis DSTM Issue
  - From: Tim Chown <tjc@ecs.soton.ac.uk>

Prev by Date: Re: draft-ietf-v6ops-nap-01.txt
Next by Date: Re: Enterprise Analysis DSTM Issue
Previous by thread: Re: Enterprise Analysis DSTM Issue
Next by thread: Re: Enterprise Analysis DSTM Issue
Index(es):
- Date
- Thread