[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SAD and SPD...

To: IP Security List <ipsec@lists.tislabs.com>
Subject: Re: SAD and SPD...
From: Henry Spencer <henry@spsystems.net>
Date: Thu, 15 Apr 1999 09:38:40 -0400 (EDT)
In-Reply-To: <Pine.LNX.4.04.9904151228150.622-100000@pc096.cse.iitk.ernet.in>
Sender: owner-ipsec@lists.tislabs.com

On Thu, 15 Apr 1999, Unmesh Kulkarni wrote:
> 	The role of SPD for inbound packets, explained in the The IPSec
> Architcture document, is not very clear to me. Since the address, SPI and
> the protocol already specify an SA, do we seperately use SPD in this case?

Yes, but in reverse:  not to determine what action to take, but to check
whether the action specified by address/SPI/protocol was correct for the
packet that finally emerges.

                                                          Henry Spencer
                                                       henry@spsystems.net
                                                     (henry@zoo.toronto.edu)

References:

SAD and SPD...

From: Unmesh Kulkarni <unmesh@iitk.ac.in>

Prev by Date: I-D ACTION:draft-ietf-ipsec-ike-ext-meth-00.txt
Next by Date: Re: SAD and SPD...
Prev by thread: SAD and SPD...
Next by thread: Re: SAD and SPD...
Index(es):
- Main
- Thread