[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Racing QM Initiator's

To: "Scott G. Kelly" <skelly@redcreek.com>
Subject: Re: Racing QM Initiator's
From: Radha Gowda <rxg@openroute.com>
Date: Thu, 14 Oct 1999 07:24:51 -0400
CC: Jan Vilhuber <vilhuber@cisco.com>, Ben McCann <bmccann@indusriver.com>, "ipsec@lists.tislabs.com" <ipsec@lists.tislabs.com>
References: <Pine.SOL.3.96.991013164106.21188q-100000@jvilhube-ss20.cisco.com> <38051E0D.672C4058@openroute.com> <3805317F.81F75D37@redcreek.com>
Sender: owner-ipsec@lists.tislabs.com

"Scott G. Kelly" wrote:

> Radha Gowda wrote:
> >
> > > To the list at large:
> > >
> > > Why can't we put verbiage like this into the RFC? Is there some reason this
> > > is a bad thing to do?
> >
> > I also would like to point out to the list that Diffie-Hellman calculation does
> > not
> > come cheap for some of us (atleast for now).
>
> I think the point is that we must be able to support independent
> simultaneous SAs between security gateways. Otherwise, how will we
> provide PFS? If you cannot handle the DH calculation, then I suppose
> that you can serialize these, but this is not a good argument for
> dumbing down the standard, is it?
>
> Scott

Well, I was not exactly dumbing down the standard.   I was talking
of a scenario where neither side had phase1 SA to its peer, but
had an outstanding request.   I was not arbitrarily dropping the
sessions either and was basically trying to get our routers to
interoperate  with each other efficiently.

References:

Re: Racing QM Initiator's

From: Jan Vilhuber <vilhuber@cisco.com>

Re: Racing QM Initiator's

From: Radha Gowda <rxg@openroute.com>

Re: Racing QM Initiator's

From: "Scott G. Kelly" <skelly@redcreek.com>

Prev by Date: I-D ACTION:draft-ietf-ipsec-doi-tc-mib-01.txt
Next by Date: RE: PPP over IPSec (without L2TP)?
Prev by thread: Re: Racing QM Initiator's
Next by thread: Re: Racing QM Initiator's
Index(es):
- Main
- Thread