[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SPI orthogonality

To: ben@Ascend.COM
Subject: Re: SPI orthogonality
From: Dan.McDonald@eng.sun.com (Dan McDonald)
Date: Wed, 9 Jul 1997 13:14:18 -0700 (PDT)
Cc: ipsec@tis.com
In-Reply-To: <199707091857.OAA09672@carp.morningstar.com> from "Ben Rogers" at Jul 9, 97 02:57:51 pm
Sender: owner-ipsec@ex.tis.com

> > are the SAs
> > identified by tuples (SPI/Remote Address) or by (SPI/Remote
> > Address/Protocol), where Protocol = {AH, ESP} ?
> > - -Angelos
>
> The response was that the IPsec draft was in error (and would be modified).
> SA's are indexed by SPI/Remote Address/Protocol triplets.
> 
> ben

Yes, Ben is right.  You can have an ESP SA <SPI=0x2112, DST=224.0.0.1> while
having an AH SA also with <SPI=0x2112, DST=224.0.0.1>.

Dan

References:

SPI orthogonality

From: Ben Rogers <ben@Ascend.COM>

Prev by Date: Re: SPI orthogonality
Next by Date: Re: SPI orthogonality
Prev by thread: SPI orthogonality
Next by thread: Re: SPI orthogonality
Index(es):
- Main
- Thread