[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: doi-07/interoperability questions

To: ben@Ascend.COM (Ben Rogers), ipsec@tis.com
Subject: Re: doi-07/interoperability questions
From: Robert Moskowitz <rgm-sec@htt-consult.com>
Date: Tue, 10 Mar 1998 13:54:54 -0500
In-Reply-To: <199803101550.KAA08137@carp.morningstar.com>
Sender: owner-ipsec@ex.tis.com

At 10:50 AM 3/10/98 -0500, Ben Rogers wrote:

I believe you are talking about where the transforms all end at the same
system not the case where the transport is end to end and the tunnel is
gateway to gateway.

>My other question centers on the use of Encapsulation Mode attributes in
>combined (AND) proposal transforms.  Namely, it seems obvious that we
>should support the case where both are transport mode (Case 1.3 in
>section 4.5 of arch-sec), and not support the case where both are tunnel
>(probably returning a BAD-PROPSAL-SYNTAX).  However, I'm not too clear
>as to whether I should support mixed proposals.  My opinion is that it
>makes sense to support AH (transport) and ESP (tunnel) with the
>following encapsulation:
>
>[IP2][AH][ESP][IP1][upper]
>
>and to not support AH (tunnel) and ESP (transport).  Does anyone else
>have any feelings on this matter?  Whatever we choose probably ought to
>be added as clarifying text to [IPDOI].
>
>
>ben
>
>
Robert Moskowitz
ICSA
Security Interest EMail: rgm-sec@htt-consult.com

Follow-Ups:

Re: doi-07/interoperability questions

From: Ben Rogers <ben@Ascend.COM>

References:

doi-07/interoperability questions

From: Ben Rogers <ben@Ascend.COM>

Prev by Date: Re: [?] changes for Ipsec Arch. ???
Next by Date: Re: doi-07/interoperability questions
Prev by thread: doi-07/interoperability questions
Next by thread: Re: doi-07/interoperability questions
Index(es):
- Main
- Thread