[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Lifetime mismatch during phase1

To: "'ipsec@tis.com'" <ipsec@tis.com>
Subject: Lifetime mismatch during phase1
From: John Bassett <John.Bassett@digital.com>
Date: Mon, 12 Oct 1998 16:59:01 +0100
Sender: owner-ipsec@ex.tis.com

Hi all,

If, as a responder in a phase 1 exchange, I receive an SA proposal with a
lifetime exceeding the value allowed by local policy, what action should I
be taking ?.

Should I be sending back a RESPONDER-LIFETIME notify along with the SA
response (as described in the IPSEC DOI) or is the NOTIFY-SA-LIFETIME the
correct code to use during phase 1? If it's the later is there a description
of the parameters to the NOTIFY-SA-LIFETIME anywhere ?

Thanks,
John B.

Prev by Date: Re: comments on VPN framework document
Next by Date: LDAP draft problem...
Prev by thread: NDSS '99 Registration Now Taking Place!!
Next by thread: LDAP draft problem...
Index(es):
- Main
- Thread