[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKE negotiation/rekeying problem with RSIP

To: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>
Subject: Re: IKE negotiation/rekeying problem with RSIP
From: Tero Kivinen <kivinen@ssh.fi>
Date: Wed, 17 Nov 1999 03:28:11 +0200 (EET)
Cc: ipsec@lists.tislabs.com
In-Reply-To: <199911170044.TAA04775@istari.sandelman.ottawa.on.ca>
Organization: SSH Communications Security Oy
References: <Roam.SIMC.2.0.6.942792501.6433.gab@eng.sun.com><199911170044.TAA04775@istari.sandelman.ottawa.on.ca>
Sender: owner-ipsec@lists.tislabs.com

Michael C. Richardson writes:
>   I want to emphasis that if you use other-than-port-500 in most
> implementations then you use it for both initiator and responder. 
>   IKE does *NOT* use the typical "swap src/dst port and reply" method
> that one is used to. 

What? I think almost all the implementations are doing exactly that.
At least we are doing it... I might of course be wrong in this case...
-- 
kivinen@iki.fi                               Work : +358-9-4354 3218
SSH Communications Security                  http://www.ssh.fi/
SSH IPSEC Toolkit                            http://www.ssh.fi/ipsec/

Follow-Ups:

Re: IKE negotiation/rekeying problem with RSIP

From: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>

Re: IKE negotiation/rekeying problem with RSIP

From: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>

References:

Re: IKE negotiation/rekeying problem with RSIP

From: Gabriel Montenegro <gab@Eng.Sun.Com>

Re: IKE negotiation/rekeying problem with RSIP

From: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>

Prev by Date: RE: Phase 1 Re-keying Implementation Identification
Next by Date: Re: Phase 1 Re-keying Implementation Identification
Prev by thread: Re: IKE negotiation/rekeying problem with RSIP
Next by thread: Re: IKE negotiation/rekeying problem with RSIP
Index(es):
- Main
- Thread