[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: mode (tunnel/transport) in PF_Key

To: yves.everaert@detexis.thomson-csf.com
Subject: Re: mode (tunnel/transport) in PF_Key
From: Markku Savela <msa@anise.tte.vtt.fi>
Date: Tue, 13 Apr 1999 11:24:38 +0300 (EET DST)
CC: ipsec@lists.tislabs.com
In-reply-to: <3712E207.D8AF67B@detexis.thomson-csf.com> (message from Yves Everaert on Tue, 13 Apr 1999 08:19:51 +0200)
Reply-to: msa@hemuli.tte.vtt.fi (Markku Savela)
Sender: owner-ipsec@lists.tislabs.com


> How the mode (tunnel/transport) is specified by IKE to the IPSec Kernel,
> the PF_Key messages does not include directly this piece of information.

Whether or not to use tunnel is defined by the policy definition. IKE
cannot change it. No PF_KEY interface is needed.

Of course, this is an issue where views may differ: some want IKE to
negotiate policy (and demand policy extensions to PF_KEY). I would
prefer them separate.

-- 
Markku Savela (msa@hemuli.tte.vtt.fi), Technical Research Centre of Finland
Multimedia Systems, P.O.Box 1203,FIN-02044 VTT,http://www.vtt.fi/tte/staff/msa/

Follow-Ups:

Re: mode (tunnel/transport) in PF_Key

From: Henry Spencer <henry@spsystems.net>

References:

mode (tunnel/transport) in PF_Key

From: Yves Everaert <yves.everaert@detexis.thomson-csf.com>

Prev by Date: Re: draft-kivinen-ike-ext-meth-00.txt
Next by Date: Re: mode (tunnel/transport) in PF_Key
Prev by thread: mode (tunnel/transport) in PF_Key
Next by thread: Re: mode (tunnel/transport) in PF_Key
Index(es):
- Main
- Thread