[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SAD/SPD question

To: ipsec@lists.tislabs.com
Subject: Re: SAD/SPD question
From: Markku Savela <msa@burp.tkv.asdf.org>
Date: Fri, 28 Sep 2001 23:30:32 +0300
In-reply-to: <1001692703.3bb49e1f3a59e@mailhost.njit.edu> (lz6@njit.edu)
References: <1001692703.3bb49e1f3a59e@mailhost.njit.edu>
Sender: owner-ipsec@lists.tislabs.com


> I find there are some overlappings between SAD and SPD, so can we
> have one database instaed of two? If we cannot, what are the
> benefits to keep two kind of database in the system?

I don't see any overlap.

If there is, it may be an artifact of some implementations, which mix
the policy and key negotiation. (like IKE does).

References:

SAD/SPD question

From: lz6@njit.edu

Prev by Date: Re: SAD/SPD question
Next by Date: Re: an ambiguity of draft-shacham-ippcp-rfc2393bis-07
Prev by thread: Re: SAD/SPD question
Next by thread: Does an outbound packet need to be reroute?
Index(es):
- Main
- Thread