Manish, we wanted a more integrated solution. Many products can’t do
encapsulation and encryption at one time in one router. There are 2-box
solutions are there. Plus, there are more RTT packet exchanges for IPsec which
would cause more packet loss when the ITR would have to resolve an EID to an
On Thu, Oct 13, 2016 at 3:30 PM, Manish Kumar wrote:
> I guess I did mention this before but just in case that was missed - the
> idea of a separate confidentiality mechanism for each encapsulation/overlay
> protocol when these are all IP based does seem a bit inapposite to me. At a
> minimum, it
I guess I did mention this before but just in case that was missed - the idea
of a separate confidentiality mechanism for each encapsulation/overlay protocol
when these are all IP based does seem a bit inapposite to me. At a minimum, it
opens up scope for additional security holes to prey upon (