[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: How to select SPD

To: K SrinivasRao <srinu@trinc.com>
Subject: Re: How to select SPD
From: "Scott G. Kelly" <skelly@redcreek.com>
Date: Fri, 24 Apr 1998 09:20:31 -0700
CC: ipsec@tis.com
Organization: RedCreek Communications
References: <3.0.1.32.19980424083553.006b3e8c@192.9.200.10>
Sender: owner-ipsec@ex.tis.com

K SrinivasRao wrote:
> 
> Hello,
> 
> In case of automatic key managent, when the initiator sends multiple
> proposals to the responder, the responder has to select one of the
> proposal. For this he has to check the proposals that has been sent against
> what he can support which are present in his SPD. But how he will select
> which incoming SPD entry he has to use? Where do we get the selectors to
> select an SPD entry? We will get src and dest IP address from the packet,
> but that is not sufficient for selecting an SPD entry.

The ID payload also supports (one) protocol/port pair, and you could
also include other ID types in that payload (ASN.1 {DN | GN}, Key ID).

Follow-Ups:

Re: How to select SPD

From: "Scott G. Kelly" <skelly@redcreek.com>

References:

How to select SPD

From: K SrinivasRao <srinu@trinc.com>

Prev by Date: I-D ACTION:draft-ietf-ipsec-isakmp-mode-cfg-03.txt
Next by Date: Re: How to select SPD
Prev by thread: How to select SPD
Next by thread: Re: How to select SPD
Index(es):
- Main
- Thread