You could use Tunnel mode with Encapsulating Security Payload (ESP). You will have a new IP and ESP header applied to the front of the packet. Only the original IP payload would be encrypted, and authentication would only be applied up to the new ESP header. This would not affect your MPLS shim header.
Stefan Fouant On Mon, Apr 7, 2008 at 7:08 AM, mohd hgh <[EMAIL PROTECTED]> wrote: > Hi > > Is there are a way to encrypt the body of the IP > Packet only without encrypt the header of IP Packet in > ISG1000, since i want to apply the MPLS QoS over > encryption data. > > Thanks > > > > > ____________________________________________________________________________________ > You rock. That's why Blockbuster's offering you one month of Blockbuster > Total Access, No Cost. > http://tc.deals.yahoo.com/tc/blockbuster/text5.com > _______________________________________________ > juniper-nsp mailing list juniper-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/juniper-nsp > _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
