Re: v6-in-v4 IPsec and NAT traversal

To:	Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Subject:	Re: v6-in-v4 IPsec and NAT traversal
From:	Pekka Savola <pekkas@xxxxxxxxxx>
Date:	Sat, 13 Mar 2004 14:53:44 +0200 (EET)
Cc:	netdev@xxxxxxxxxxx
In-reply-to:	<E1B261p-0006gI-00@xxxxxxxxxxxxxxxxxxxxxxxx>
Sender:	netdev-bounce@xxxxxxxxxxx

On Sat, 13 Mar 2004, Herbert Xu wrote:
> Pekka Savola <pekkas@xxxxxxxxxx> wrote:
> > I'm interested whether Linux IPsec implementations support:
> > 
> > 1) IPv6 payload inside IPv4 IPsec tunnel/transport?
> 
> It's not supported directly by the IPsec stack.  However, you can
> setup an SIT tunnel over a transport IPv4 IPsec SA.

Is this planned?  Are there issues with "native" support why it would 
not be feasible?

Avoiding double encapsulation would be IMHO really useful, and several 
other implementations are already reported to allow this.

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

<Prev in Thread]	Current Thread	[Next in Thread>
v6-in-v4 IPsec and NAT traversal, Pekka Savola Re: v6-in-v4 IPsec and NAT traversal, Herbert Xu Re: v6-in-v4 IPsec and NAT traversal, Pekka Savola <= Re: v6-in-v4 IPsec and NAT traversal, Herbert Xu Re: v6-in-v4 IPsec and NAT traversal, Michael Richardson

Previous by Date:	Re: ifconfig bug removes aliases, Julian Anastasov
Next by Date:	Re: ifconfig bug removes aliases, Aron Griffis
Previous by Thread:	Re: v6-in-v4 IPsec and NAT traversal, Herbert Xu
Next by Thread:	Re: v6-in-v4 IPsec and NAT traversal, Herbert Xu
Indexes:	[Date] [Thread] [Top] [All Lists]