I would see the benefit more from authentication than from encryption. My understanding is that instead of doing MD5 hashing as a function of OSPF, OSPFv3 simply leverages the built in IPSec functionality of IPv6. I would imagine the end goals are the same.
On Wed, Jan 5, 2011 at 10:28 PM, Dobbins, Roland <rdobb...@arbor.net> wrote: > > On Jan 6, 2011, at 10:19 AM, Devon True wrote: > >> Does not work on the 6500/7600 unfortunately, but worked beautifully in my >> GNS3 lab. > > And encrypting one's IGP updates via IPSEC contributes materially to one's > network security posture in what specific way(s)? > > ------------------------------------------------------------------------ > Roland Dobbins <rdobb...@arbor.net> // <http://www.arbornetworks.com> > > Most software today is very much like an Egyptian pyramid, with millions > of bricks piled on top of each other, with no structural integrity, but > just done by brute force and thousands of slaves. > > -- Alan Kay > > > _______________________________________________ > cisco-nsp mailing list cisco-...@puck.nether.net > https://puck.nether.net/mailman/listinfo/cisco-nsp > archive at http://puck.nether.net/pipermail/cisco-nsp/ > _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/