> > IPsec is rapidly gaining popularity. 3Com is about to release > > a NIC that > > implements 3DES and IPsec in hardware > > Is this based on the new Intel chipset that was recently > reported (among > millions of other places) on slashdot? Nope. It was developed by 3Com. Here's the link to the card desc: http://www.3com.com/products/dsheets/3cr990.html > If so, the card implements a few of the madated IPSec ciphers > in hardware, > which helps offload processing from the OS IPSec engine. It > doesn't actually grok IPSec itself. Here's a quote: "This new generation of NICs for desktops, workstations, and servers includes a 3Com-developed ASIC, the 3XP processor, that combines a 10/100 Ethernet MAC and an embedded ARM9 RISC processor. . . these NICs include a 3DES encryption chip, which accelerates and offloads the CPU-intensive IPSec encryption algorithms." So it sounds like you're pretty much right. They implemented all the computation-intensive stuff in hardware, but it can't do IPSec entirely on its own. > I don't know how well they conform, but IPSec is native in > all the previews > of W2K that I have played with, and I have had it working in > various test > setups. It's damn easy to use for LAN stuff, and seems to work OK with > Cisco's IPSec gear. This may be the first time MS has actually decided to conform to a standard instead of creating their own. I hope this ends up being the case in this situation, it would be wonderful to be able to use Win2k as the client and a cisco router as the server. > > I think IPsec version > > 2 is in the works but it will be a while before apps are out > > that use it. > > News to me. What's busted in IPSec "1"? Oops. I shouldn't write mail so early in the morning :P I had meant that a new version of ssh is being developed that is based on IPsec. So it really should have been "ssh version 2." Again, not to imply that the existing version is broken so much as that they are improving it. Sean
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:42:39 PDT