Why they may not use this technology ? Even today irrespective of the
topology, traffic is intercepted by lawful agencies by using different
mechanism (port mirroring, etc...)
Thanks,
Yogendra Pal
Ericsson, India
On Wed, Mar 21, 2012 at 7:07 AM, Stephen Hanna sha...@juniper.net wrote:
Please
I don't think this is an all-or-nothing choice. You might want a mesh for VoIP,
but a star for HTTP, FTP and mail protocols. Or you may want a mesh within your
organization, but to trunk and inspect all traffic going somewhere else.
On Mar 21, 2012, at 3:37 AM, Stephen Hanna wrote:
Please
Cc: IPsecme WG
Subject: Re: [IPsec] [ipsecme] #219: Star topology as an admin choice
I don't think this is an all-or-nothing choice. You might want a mesh for VoIP,
but a star for HTTP, FTP and mail protocols. Or you may want a mesh within your
organization, but to trunk and inspect all traffic
Hi Yogendra,
I guess the question being raised here is slightly different.
The question is should all traffic be first sent to a central point
(Campus/ DC etc) inspected (IDS/ IPS/ Firewall) and then allowed to pass to
others peers or should there be a direct connection between the peers too -
Please comment.
Steve
-Original Message-
From: ipsecme issue tracker [mailto:t...@tools.ietf.org]
Sent: Tuesday, March 20, 2012 7:04 PM
To: yaronf.i...@gmail.com; draft-ietf-ipsecme-p2p-vpn-prob...@tools.ietf.org
Subject: [ipsecme] #219: Star topology as an admin choice
#219: Star