[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ISAKMP over UDP, TCP of IP

To: ipsec@lists.tislabs.com
Subject: ISAKMP over UDP, TCP of IP
From: "Florian Heissenhuber" <heissenhuber@iabg.de>
Date: Mon, 21 Jun 1999 13:17:07 +0000
Comments: Authenticated sender is <heissenhuber@iabgmh.iabg.de>
Organization: IABG mbH
Reply-to: heissenhuber@iabg.de
Sender: owner-ipsec@lists.tislabs.com

Hi,

I've read RFC 2408 (ISAKMP) and I've some questions regarding section 
2.5.1 of this RFC:

>2.5.1 Transport Protocol
>   ISAKMP can be implemented over any transport protocol or over IP
>   itself.  Implementations MUST include send and receive capability
>   for ISAKMP using the User Datagram Protocol (UDP) on port 500.  UDP
>   Port 500 has been assigned to ISAKMP by the Internet Assigned
>   Numbers Authority (IANA). Implementations MAY additionally support
>   ISAKMP over other transport protocols or over IP itself.

What's the reason to allow implementations to support 
additionally ISAKMP over other transport protocols or over IP itself? 
I think this may introduce only additional complexity without any 
benefits. 

Is there already a port number assigned for ISAKMP over TCP? Is there 
any assigned Protocol value (IPv4) of Next Header value (IPv6) for 
ISAKMP over IP?

I'm thinking about an IPsec implementation, so I hope somebody can 
help me.

Best regards,

Florian



__________________________________________________________________

Florian Heissenhuber                Phone+49 89 60883539 
IABG mbH                            Fax  +49 89 60882845
Einsteinstr. 20                     heissenhuber@iabg.de
85521 Ottobrunn                     http://www.iabg.de
Germany

Prev by Date: RE: Dangling SA Summary
Next by Date: RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)
Prev by thread: draft-ipsec-ecn-00.txt
Next by thread: No Subject
Index(es):
- Main
- Thread