[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Question about ID types in IPSEC DOI

To: Vipul Gupta <vgupta@nobel.Eng.Sun.COM>
Subject: Re: Question about ID types in IPSEC DOI
From: "Derrell D. Piper" <ddp@network-alchemy.com>
Date: Thu, 25 Jun 1998 18:27:28 -0700
cc: ipsec@tis.com, vipul.gupta@Eng.Sun.Com
In-reply-to: Your message of "Thu, 25 Jun 1998 17:59:43 PDT." <libSDtMail.9806251759.60.vgupta@nobel>
Sender: owner-ipsec@ex.tis.com

Vipul,

The is a actually a bug in the current DOI.  Since the last draft of ISAKMP,
the IPSEC DOI ID types apply only to Phase 2 negotiations.  The valid Phase 1
types are now listed in the ISAKMP draft (and are much more limited).  

The ID_KEY_ID type predates the ISAKMP Vendor ID payload and should probably
be deprecated in favor of that, since it's essentially a private extension.

Who's using this type in Phase 1?

Derrell

References:

Question about ID types in IPSEC DOI

From: Vipul Gupta <vgupta@nobel.Eng.Sun.COM>

Prev by Date: Question about ID types in IPSEC DOI
Next by Date: Re: KEA and SKIPJACK declassified
Prev by thread: Question about ID types in IPSEC DOI
Next by thread: Re: Question about ID types in IPSEC DOI
Index(es):
- Main
- Thread