Enabling a Single-Label Gateway to Forward Packets at Multiple Labels

A single-label host (specified with a host type of Unlabeled or RIPSO) must be assigned a default label in its template. A minimum and a maximum label in the unlabeled host's template define an accreditation range that can be used for routing. Specifying the accreditation range enables a single-label gateway to be able to forward packets that it would not otherwise be allowed to receive based on its default label alone.

The trusted network software uses the accreditation range specified for a single-label gateway to decide which packets can be sent through that gateway. The packet being forwarded by the unlabeled gateway must be within the gateway's accreditation range.

Previous: Administering Routing
Next: Chapter 8 Specifying Routing and Security for Remote Computers