-----BEGIN PGP SIGNED MESSAGE-----
>>>>> "Andrew" == Andrew Kohlsmith <[EMAIL PROTECTED]> writes:
Andrew> Asterisk supports encrypted IAX, and there have been some
Andrew> rumblings about S(ecure)RTP, but I don't think there's a
Andrew> lick of code for it yet. I don't think that OpenS/WAN will
Andrew> have any serious impact on your communications so long as
Andrew> the processors aren't getting bogged down. Yes, latency
Andrew> will increase slightly. I admit I have done no testing to
Andrew> see just how much it will. :-)
We do SIP over IPsec regularly.
For processors larger than 200Mhz, and pipes smaller than 10Mb/s, you
just don't notice. (Both for the case where the * box is doing the
IPsec and for the case where it doesn't)
We notice lower quality for (unencrypted) SIP to DID's due to
differing queuing of our packets by Bell Nexxia, and due to
latency/bandwidth tradeoffs on many DSLs configs. (Bridged ethernet is
usually much better than PPPoE, for instance)
(our VPNs try to avoid Bell Nexxia in general)
- --
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Xelerance Corporation, Ottawa, ON |net architect[
] [EMAIL PROTECTED] http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys
iQCVAwUBQ0lPg4qHRg3pndX9AQHlTwP/Y7PZUsHrW40FD+rf024knMmNmEl7J4OG
2EXgxF+WGcZJBxik2Ft/opEfBSNW88cLao++/tXt/e/mnRjFLJXBj66+OG3O/GWK
nhov9INvv19VcfsqBd8APz/6T7tYHIM4N0Fqqk1GYUH67mMLX37v3Z6zqI524b8f
fI95g7jdmx8=
=U8Ww
-----END PGP SIGNATURE-----
