[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: UDP / Identifying ISAKMP message



in a classic operating system environment it's good for it to be based
on an above-IP protocol because it's often difficult to run around and
hit the file system for things like cert files if you're running raw IP.

At 10:43 AM 3/8/99 -0500, Henry Spencer wrote:
>On Mon, 8 Mar 1999, Michael Richardson wrote:
>>     heilmann> 2.) Are there any special reasons, why ISAKMP hasn't
>>     heilmann> simply been assigned a "Next Header" number for IPv6 -
>>     heilmann> so that it could run directly over IP itself?
>> 
>>   It was designed specifically to allow that kind of thing...
>
>Indeed, RFC 2408 specifically mentions the possibility of using it over
>bare IP.
>
>> Hilary had some reasons for UDP vs IP protocols.
>
>The usual reason for wanting to use UDP is that it provides port numbers,
>which permits doing things like running experimental daemons on the same
>machine as production ones.
>
>                                                          Henry Spencer
>                                                       henry@spsystems.net
>                                                     (henry@zoo.toronto.edu)
>




References: