> > Without ever having looked at this I would guess that openbgpd support > > for dynamic keying is for securing the bgp session itself, nothing more. > > > > Yes, this is correct.
*sigh*. There goes hopes for elegant BGP-IPsec VPNs, back to BGP over GRE over IPsec. Thanks Claudio, Tony for clearing this out, Florian
