Firewall Wizards mailing list archives

RE: Placement of a VPN Appliance

From: "Stewart, John" <johns () artesyncp com>
Date: Thu, 4 Jan 2001 11:02:38 -0600


Crist and Ben write:

[0] Oh, and there is that complete abomination of UDP encapsulated
IPsec we'll probably have to let through.


What makes you unhappy with IPSec-in-UDP? It seems like a 
cool hack, to me.
Solves the NAT problem nicely. Yes, there's a performance 
hit, but that's
the price you pay. I'd actually like to see an RFC / 
registered port for it,
to tell the truth - just for interop purposes.


UDP encapsulated IPsec? Could you elaborate or direct me to where I can find
more about this? What vendors are doing this (I assume to allow VPNs to work
through NAT firewalls?)?

thanks!

johnS

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Placement of a VPN Appliance Crist Clark (Jan 03)
- <Possible follow-ups>
- RE: Placement of a VPN Appliance Ben Nagy (Jan 03)
  - Re: Placement of a VPN Appliance Crist Clark (Jan 03)
- Re: Placement of a VPN Appliance Jeffery . Gieser (Jan 04)
- Re: Placement of a VPN Appliance Bill_Royds (Jan 04)
- RE: Placement of a VPN Appliance Stewart, John (Jan 04)
- RE: Placement of a VPN Appliance Bob . Eichler (Jan 04)
- RE: Placement of a VPN Appliance Jeffery . Gieser (Jan 04)
- RE: Placement of a VPN Appliance Ben Nagy (Jan 04)
- RE: Placement of a VPN Appliance Ben Nagy (Jan 04)
- Re: Placement of a VPN Appliance dharris (Jan 04)
  - Re: Placement of a VPN Appliance R. DuFresne (Jan 05)
    - Re: Placement of a VPN Appliance JB (Jan 08)
- RE: Placement of a VPN Appliance David Bovee (Jan 05)
- Re: Placement of a VPN Appliance Jeffery . Gieser (Jan 05)
- Re: Placement of a VPN Appliance dharris (Jan 05)