[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
ISAKMP over UDP, TCP of IP
Hi,
I've read RFC 2408 (ISAKMP) and I've some questions regarding section
2.5.1 of this RFC:
>2.5.1 Transport Protocol
> ISAKMP can be implemented over any transport protocol or over IP
> itself. Implementations MUST include send and receive capability
> for ISAKMP using the User Datagram Protocol (UDP) on port 500. UDP
> Port 500 has been assigned to ISAKMP by the Internet Assigned
> Numbers Authority (IANA). Implementations MAY additionally support
> ISAKMP over other transport protocols or over IP itself.
What's the reason to allow implementations to support
additionally ISAKMP over other transport protocols or over IP itself?
I think this may introduce only additional complexity without any
benefits.
Is there already a port number assigned for ISAKMP over TCP? Is there
any assigned Protocol value (IPv4) of Next Header value (IPv6) for
ISAKMP over IP?
I'm thinking about an IPsec implementation, so I hope somebody can
help me.
Best regards,
Florian
__________________________________________________________________
Florian Heissenhuber Phone+49 89 60883539
IABG mbH Fax +49 89 60882845
Einsteinstr. 20 heissenhuber@iabg.de
85521 Ottobrunn http://www.iabg.de
Germany