[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Agenda for the Minneapolis meeting

To: Mark Baugher <mbaugher@cisco.com>
Subject: Re: Agenda for the Minneapolis meeting
From: Dan Harkins <dharkins@cips.nokia.COM>
Date: Thu, 15 Mar 2001 14:04:20 -0800
cc: ipsec@lists.tislabs.com
In-Reply-To: Your message of "Thu, 15 Mar 2001 12:44:40 PST." <4.3.2.7.2.20010315124326.00b5df70@mail.potlnd1.or.home.com>
Sender: owner-ipsec@lists.tislabs.com

  That just isn't true. KINK defines new payloads and is, itself, a
new exchange. The group DOI is for multicast security and since IKE
establishes a shared symmetric key between two parties and two parties
only a new multicast key exchange has to be defined. Neither of these
things should speak out of UDP port 500. 

  Dan.

On Thu, 15 Mar 2001 12:44:40 PST you wrote
> At 11:22 AM 3/15/2001 -0800, Dan Harkins wrote:
> >   Can you be more specific on the danger?
> >
> >   One problem I see with not combining the two is the trend to use
> >UDP port 500 as a place to multiplex in different protocols. That is
> 
> kink and gdoi are not different protocols.  The extend IKE as the
> standard allows.
> 
> Mark

Follow-Ups:

Re: Agenda for the Minneapolis meeting

From: Mark Baugher <mbaugher@cisco.com>

References:

Re: Agenda for the Minneapolis meeting

From: Mark Baugher <mbaugher@cisco.com>

Prev by Date: Re: Agenda for the Minneapolis meeting
Next by Date: Re: Agenda for the Minneapolis meeting
Prev by thread: Re: Agenda for the Minneapolis meeting
Next by thread: Re: Agenda for the Minneapolis meeting
Index(es):
- Main
- Thread