nanog mailing list archives

Re: GRE packets

From: Sean Donelan <SEAN () SDG DRA COM>
Date: Wed, 17 Jun 1998 22:17:10 -0500

Moreover, if IPSEC is in use, you can't even sniff.


With IPSEC you infer things from traffic analysis.  Or if you don't
feel like doing grevious harm to IPSEC, you block the traffic and wait
to see who complains.  Many telephone companies do this type of blocking
to control fraud on international calls.  Your calling card will suddenly
just stop working.  You'll call up your communications provider, and while
usually acting totally clueless, they'll re-enable your calling card.

Most of the time, the spikes in traffic are fairly obvious.  People
share the 'secret' with their friends and like hogs at the trough they
can never use it just a little.
-- 
Sean Donelan, Data Research Associates, Inc, St. Louis, MO
  Affiliation given for identification not representation

Current thread:

Re: GRE packets, (continued)
- Re: GRE packets John Hawkinson (Jun 17)
  - Re: GRE packets C. Harald Koch (Jun 18)
- Re: GRE packets Paul G. Donner (Jun 17)
  - Re: GRE packets Eric Germann (Jun 17)
- Re: GRE packets Danny McPherson (Jun 17)
  - Re: GRE packets Paul G. Donner (Jun 17)
  - Re: GRE packets Michael Dillon (Jun 17)
  - Re: GRE packets Alex Bligh (Jun 18)
- Re: GRE packets Sean Donelan (Jun 17)
  - Re: GRE packets Perry E. Metzger (Jun 17)
- Re: GRE packets Sean Donelan (Jun 17)