[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ID payload on phase 2.
Dan and Sumit,
Thanks for your answers. Sorry the question was silly. I'm new to
ipsec.
Francisco
================================================================================
Subject: Re: ID payload on phase 2.
Author: Non-HP-dharkins (dharkins@network-alchemy.com) at HP-ColSprings,mimegw5
Date: 12/8/99 9:10 AM
Why can't it contain 10.10/24/tcp/0? Look at the figure and accompanying
text in 4.6.2 of RFC2407. What do you think the protocol and port fields
are for?
Dan.
On Wed, 08 Dec 1999 07:16:31 PST you wrote
> I'm confused. Are you saying that the ID payload contains a selector
> such as 10.10.10/24/tcp/0?
>
> According to the DOI RFC (RFC 2407), Section 4.6.2, the ID payload may
> contain verious kinds of addresses and names, but not selectors. It
> could contain 10.10.10/24 but not 10.10.10/24/tcp/0.
>
> Francisco
================================================================================
> I'm confused. Are you saying that the ID payload > contains a selector
> such as 10.10.10/24/tcp/0?
>
> According to the DOI RFC (RFC 2407), Section 4.6.2, the > ID payload may
> contain verious kinds of addresses and names, but not > selectors. It
> could contain 10.10.10/24 but not 10.10.10/24/tcp/0.
Sure it can. Check out the format of the ID payload from section 4.6.2:
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ! Next
Payload ! RESERVED ! Payload Length !
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ! ID Type
! Protocol ID ! Port !
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ~
Identification Data ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Note the protocol id and port fields.
Sumit A. Vakil
Caly Networks
>
> Francisco
>
References: