[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKE v2 Requirements and backwards compatability

To: Scott Fanning <sfanning@cisco.com>
Subject: Re: IKE v2 Requirements and backwards compatability
From: Henry Spencer <henry@spsystems.net>
Date: Mon, 17 Dec 2001 19:37:21 -0500 (EST)
cc: IETF-IPSec <ipsec@lists.tislabs.com>
In-Reply-To: <002101c18757$73b8a5f0$7480ad40@sfanninglaptop>
Sender: owner-ipsec@lists.tislabs.com

On Mon, 17 Dec 2001, Scott Fanning wrote:
> Should there be a requirement that IKEv2 be able to interoperate with
> IKEv1? There is a large deployed base, and a migration path to the new
> version should be an requirement.

The migration path, clearly, is "support both".  That's trivial if they
are using different ports, although less so if IKEv2 stays on UDP/500. 

There is no way to require the two *protocols* to be interchangeable
without sacrificing most of the benefits we hope to see from IKEv2.  But
it is implementations, not protocols, which interoperate.

                                                          Henry Spencer
                                                       henry@spsystems.net

Follow-Ups:

Re: IKE v2 Requirements and backwards compatability

From: "Scott Fanning" <sfanning@cisco.com>

References:

IKE v2 Requirements and backwards compatability

From: "Scott Fanning" <sfanning@cisco.com>

Prev by Date: Re: fragmentation
Next by Date: Re: IKE v2 Requirements and backwards compatability
Prev by thread: IKE v2 Requirements and backwards compatability
Next by thread: Re: IKE v2 Requirements and backwards compatability
Index(es):
- Main
- Thread