[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: more...changes to ISAMKP/Oakley

To: ipsec@tis.com
Subject: Re: more...changes to ISAMKP/Oakley
From: smamros@newoak.com (Shawn Mamros)
Date: Wed, 15 Oct 1997 16:57:39 -0400
Sender: owner-ipsec@ex.tis.com

I think the change as proposed by Dan (i.e., allowing a DOI value of
zero for Phase 1 negotiations) is fine.

OTOH, I'm having a difficult time seeing the need for a separate
ISAKMP/Oakley DOI, or for eliminating/deprecating PROTO_ISAKMP.
Using a DOI of zero in Phase 1 should achieve whatever "logical
separation" between IPsec and ISAKMP might be desired.  PROTO_ISAKMP
is defined as a reserved value across all DOIs (see the isakmp-08
draft, section A.2.2), and I see no reason why that should not
continue to be the case.  Unless there's some additional justification
for these changes, I'd rather see things remain as they are.

-Shawn Mamros
E-mail to: smamros@newoak.com

Follow-Ups:

Re: more...changes to ISAMKP/Oakley

From: Daniel Harkins <dharkins@cisco.com>

Prev by Date: Re: proposed changes to ISAKMP/Oakley
Next by Date: Re: more...changes to ISAMKP/Oakley
Prev by thread: RE: more...changes to ISAMKP/Oakley
Next by thread: Re: more...changes to ISAMKP/Oakley
Index(es):
- Main
- Thread