[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: doi-07/interoperability questions

To: CJ Gibson <cjgibson@semaphorecom.com>
Subject: Re: doi-07/interoperability questions
From: "Eric L. Wong" <ewong@zk3.dec.com>
Date: Wed, 11 Mar 1998 11:52:50 -0500
Cc: Ben Rogers <ben@Ascend.COM>, Robert Moskowitz <rgm-sec@htt-consult.com>, ipsec@tis.com
References: <0171F2F8F9E5D011A4D10060B03CFB44097E85@scc-server3.semaphorecom.com>
Sender: owner-ipsec@ex.tis.com

No, I am not advocating such at all.  I mis-interpreted the original
post.  I get the picture now, as explained by Ben.

/eric

CJ Gibson wrote:
> 
> I don't believe we should delete either 2 or 4 but I didn't think that's
> what Ben meant by "not support AH (tunnel) and ESP (transport)". I
> assumed this meant "not support [these] together  on the same packet.
> You aren't seriously advocating the removal of AH-tunnel mode, are you?
> I also don't see the use of adding 6.
> 
> --CJ
> 

=======
Ben Rogers wrote:
> > Is this correct?
> 
> Nope.  All I'm suggesting is that we have a way to negotiate 5 followed
> by 1 in ISAKMP.  The net result being:
> 
> [IP1][upper]
> [IP2][ESP][IP1][upper]
> [IP2][AH][ESP][IP1][upper]
> 
> I used to think that 6 was necessary, but was convinced this was not a
> valid combination by Stephen Kent at the December IETF (AH is no longer
> in tunnel mode).  You can, however, emulate it using the 5+1
> combination.  This was what I was suggesting in the AH (transport) + ESP
> (tunnel) proposal.
> 
> 
> ben
> 
>

References:

RE: doi-07/interoperability questions

From: CJ Gibson <cjgibson@semaphorecom.com>

Prev by Date: Looking for statement of patent issues re ISAKMP/Oakley
Next by Date: RE: Looking for statement of patent issues re ISAKMP/Oakley
Prev by thread: RE: doi-07/interoperability questions
Next by thread: draft-ietf-ipsec-ciph-cbc-02.txt
Index(es):
- Main
- Thread