Should the DELETE payload be authenticated using an ISAKMP SA (or pre-shared key) ? Otherwise there seems to be an easy denial-of-service attack. Pau-Chen