[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: SA byte lifetime

To: <awank@future.futsoft.com>, <ipsec@lists.tislabs.com>
Subject: RE: SA byte lifetime
From: "Markku Savela" <Markku.Savela@research.nokia.com>
Date: Thu, 21 Sep 2000 10:21:41 +0300
Importance: Normal
In-Reply-To: <01C02340.46360B80.awank@future.futsoft.com>
Sender: owner-ipsec@lists.tislabs.com

> 1) Once the AH SA soft byte lifetime expires, should we :
> 	a) negotiate for the bundle again.- In this we are
> assuming that the ESP
> SA has also 			expired.
> 	b) negotiate for AH SA only - In this case, how ?

If using IKE as a key negotiation, it only supports (a), because current IKE
implementations cannot negotiate "unbundled" SA's (nor SA's that could be
shared between bundles).

As far as RFC-2401 is concerned, both (a) and (b) could be possible.

References:

SA byte lifetime

From: Awan Kumar Sharma <awank@future.futsoft.com>

Prev by Date: Re: SA byte lifetime
Next by Date: ISAKMP Delete Payload (2)
Prev by thread: Re: deleting bundles (Re: SA byte lifetime)
Next by thread: ISAKMP Delete Payload
Index(es):
- Main
- Thread