Re: Phase 1 Re-keying Implementation Identification

[Ben McCann <bmccann@indusriver.com>]

Do we have requirements on _when_ feature negotiation is needed?

For example, must we negotiate optional features during Phase 1 for
later use during the creation of the Phase 1 SA? Or, can we negotiate
_after_ Phase 1 via something like Mode Config (aka IKECFG)?

I prefer something like Mode Config's additional Transaction Exchange
because it is secured by the Phase 1 SA and because it offers a moderately
rich set of operations and attributes. However, it won't let you affect
the creation of the Phase 1 SA.

-Ben McCann

-- 
Ben McCann                              Indus River Networks
                                        31 Nagog Park
                                        Acton, MA, 01720
email: bmccann@indusriver.com           web: www.indusriver.com 
phone: (978) 266-8140                   fax: (978) 266-8111

---

References:

• RE: Phase 1 Re-keying Implementation Identification
• From: Andrew Krywaniuk <akrywaniuk@TimeStep.com>
• RE: Phase 1 Re-keying Implementation Identification
• From: Paul Koning <pkoning@xedia.com>
• Re: Phase 1 Re-keying Implementation Identification
• From: tytso@mit.edu
• Re: Phase 1 Re-keying Implementation Identification
• From: Paul Koning <pkoning@xedia.com>
• Re: Phase 1 Re-keying Implementation Identification
• From: tytso@mit.edu

---

• Prev by Date: Re: suggested clarification regarding port handling in ike
• Next by Date: Re: IPComp rfc2393bis-00
• Prev by thread: Re: Phase 1 Re-keying Implementation Identification
• Next by thread: RE: Phase 1 Re-keying Implementation Identification
• Index(es):
  • Main
  • Thread