[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RFC 2401 section 5.2.1

To: sommerfeld@East.Sun.COM
Subject: Re: RFC 2401 section 5.2.1
From: Stephen Kent <kent@bbn.com>
Date: Tue, 28 Nov 2000 19:05:04 -0500
Cc: ipsec@lists.tislabs.com
In-Reply-To: <200011282248.eASMmEa102347@thunk.east.sun.com>
References: <200011282248.eASMmEa102347@thunk.east.sun.com>
Sender: owner-ipsec@lists.tislabs.com

Bill,

I think it is feasible to maintain the SA info within a single 
"system" for later AC checking, and that would not be subject to 
standardization. However, I would not expect to create a standard 
transfer representation for that sort of info to carry with a packet 
once it is outside a system, e.g., a packet existing an IPsec device 
and heading to a separate firewall. I don't think you were suggesting 
this, but I did want to mention the difference.

Steve

References:

Re: RFC 2401 section 5.2.1

From: Bill Sommerfeld <sommerfeld@East.Sun.COM>

Prev by Date: Re: RFC 2401 section 5.2.1
Next by Date: Re: RFC 2401 section 5.2.1
Prev by thread: Re: RFC 2401 section 5.2.1
Next by thread: Re: RFC 2401 section 5.2.1
Index(es):
- Main
- Thread