[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Question about ID types in IPSEC DOI
> Since the last draft of ISAKMP,
> the IPSEC DOI ID types apply only to Phase 2 negotiations. The valid Phase 1
> types are now listed in the ISAKMP draft (and are much more limited).
> The ID_KEY_ID type predates the ISAKMP Vendor ID payload and should probably
> be deprecated in favor of that, since it's essentially a private extension.
Why should the ID types in Phase 1 be limited? I'd gotten the
very strong impression that there was no intent to do this --- it
has policy implications that are really unnecessary.
Hilarie