[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKE proposal formation

To: <sridharj@future.futsoft.com>, "Ipsec (E-mail)" <ipsec@lists.tislabs.com>
Subject: Re: IKE proposal formation
From: "Jari Arkko" <jari.arkko@kolumbus.fi>
Date: Thu, 17 Aug 2000 23:22:20 +0300
Sender: owner-ipsec@lists.tislabs.com

>Suppose in a implementation IPSEC wants AH-MD5 and ESP-DES  SA to 
>be negotiated using IKE .
>The problem I am facing now is how to form an SADB_AQUIRE  ( PF_KEY )message
>indicating IKE that  AH-MD5 and ESP-DES have to be put in the same SA payload
>And both proposals should have same number


You can't. PF_KEY does not support bundles. Oh, there's been discussion about
fixing that on the PF_KEY list but right now it does not exist. For one of the ideas on
how to do it, see http://search.ietf.org/internet-drafts/draft-arkko-pfkey-reference-00.txt.
Other ideas have been discussed on the list, too.

Jari

Follow-Ups:

RE: IKE proposal formation

From: "Markku Savela" <Markku.Savela@research.nokia.com>

Prev by Date: Re: Minutes from Pittsburgh?
Next by Date: RE: IKE proposal formation
Prev by thread: RE: IKE proposal formation
Next by thread: RE: IKE proposal formation
Index(es):
- Main
- Thread