[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification, etc.]

To: Stephen Kent <kent@bbn.com>
Subject: Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification, etc.]
From: Bill Sommerfeld <sommerfeld@orchard.arlington.ma.us>
Date: Mon, 04 May 1998 12:09:44 -0400
cc: Steve Deering <deering@cisco.com>, "Theodore Y. Ts'o" <tytso@MIT.EDU>, Robert Elz <kre@munnari.oz.au>, Thomas Narten <narten@raleigh.ibm.com>, jis@MIT.EDU, ipsec@tis.com, ipng@sunroof.eng.sun.com
In-reply-to: Your message of "Mon, 4 May 1998 11:41:27 -0400 ." <v03110704b17391b0c529@[128.33.238.32]>
Sender: owner-ipsec@ex.tis.com

> I believe that the Arch Doc considers a BITW Ipsec device to be a host
> implementation in that context (at least for a single homed host).  If the
> same device is used in front of a router, then it inherits the security
> gateway requirements.

However, the fact that the host implementation is in two pieces allows
for the possibility that the "real host" can generate extension
headers which the "bump" doesn't know about.  Actually, given modular
software components, the same thing can happen within a single host
implementation.  

>From an engineering point of view, I think there should clearly be a
specified behavior in the presence of unknown extension headers..

					- Bill

Follow-Ups:

Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification,etc.]

From: Stephen Kent <kent@bbn.com>

Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification, etc.]

From: "Theodore Y. Ts'o" <tytso@MIT.EDU>

References:

Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification,etc.]

From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification,etc.]
Next by Date: Re: low-end IPSEC boxes?
Prev by thread: Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification,etc.]
Next by thread: Re: (IPng 5759) Re: [Karen Seo: Thomas Narten -- clarification,etc.]
Index(es):
- Main
- Thread