[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Notify code(s) missing?
In <draft-ietf-ipsec-isakmp-oakley-04.txt>, It Is Written:
If ISAKMP is acting as a proxy negotiator on behalf of another party
the identities of the parties MUST be passed as IDui and then IDur.
Local policy will dictate whether the proposals are acceptible for
the identities specified. If IDs are not exchanged, the negotiation
is assumed to be done on behalf of each ISAKMP peer. If an ID range
(see Appendix A of [Pip96]) is not acceptable (for example, the
specified subnet is too large) a BAD_ID_RANGE notify message followed
by an acceptible ID range, in an ID payload, MUST be sent.
However, I can't find the definition of "BAD_ID_RANGE" in any of the
documents. Since DOI-4 is the first to define DOI specific Notifies, I
suspect this is a minor editorial oversight; can we add it to the list?
Similarly, for "5.5 New Group Mode":
... If the group
is not acceptable, the responder MUST reply with a Notify payload
with the message type set to GROUP_NOT_ACCEPTABLE (13).
GROUP_NOT_ACCEPTABLE isn't defined anywhere, but Notify 13 is
"ATTRIBUTES-NOT-SUPPORTED". Are they intended to be the same or different?
Thanks,
--
Harald Koch <chk@utcc.utoronto.ca>
Follow-Ups: