Re: Agenda for the Minneapolis meeting

[Mark Baugher <mbaugher@cisco.com>]

Dan
    It would be one thing to run, say, nfs and ftp on the same port.
I would call that "running two different protocols on the same port."
That being one case, what do you call it when DOIs which use
similar payloads, similar exchanges, and the same header with
a switch to identify them are run on the same port?  It is misleading
to suggest that the first case is the same as the second.

At 02:04 PM 3/15/2001 -0800, Dan Harkins wrote:
>   That just isn't true. KINK defines new payloads and is, itself, a
>new exchange. The group DOI is for multicast security and since IKE
>establishes a shared symmetric key between two parties and two parties
>only a new multicast key exchange has to be defined. Neither of these

GDOI uses that pair-wise symmetric key.

>things should speak out of UDP port 500.

I don't know yet if sharing the same port among different DOIs
is an important issue but it's clear that the protocol is designed to
demultiplex exchanges that belong to different DOIs.  I know of
two implementations where this was implemented very efficiently.

Mark


>   Dan.

---

Follow-Ups:

• Re: Agenda for the Minneapolis meeting
• From: Dan Harkins <dharkins@cips.nokia.COM>

References:

• Re: Agenda for the Minneapolis meeting
• From: Dan Harkins <dharkins@cips.nokia.COM>

---

• Prev by Date: Re: Agenda for the Minneapolis meeting
• Next by Date: Re: Agenda for the Minneapolis meeting
• Prev by thread: Re: Agenda for the Minneapolis meeting
• Next by thread: Re: Agenda for the Minneapolis meeting
• Index(es):
  • Main
  • Thread