[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: Can the two entities have multiple ISAKMP SAs?

To: "ipsec@lists.tislabs.com" <ipsec@lists.tislabs.com>
Subject: Re: Re: Can the two entities have multiple ISAKMP SAs?
From: phoenixcry@sina.com
Date: Wed, 24 Apr 2002 22:41:10 +0800
Sender: owner-ipsec@lists.tislabs.com

Can you show me the detail of the using cookie to indicate ISAKMP SA?
I mean:two entities (e.g.  ISAKMP servers) can negotiate (and have active) multiple ISAKMP SAs,so the message used for negotiating SAs in Prase 2 should be encoded by one of 
													  ~~~~~~~
ISAKMP SAs. 
I know in phrase 1 it uses cookies to indicate which ISAKMP SA is negotiating now.
Does the cookie in Phrase 2 indicate the selected ISAKMP SA?
If it is,do you mean that we can use some bits of the cookie in Phrase 2 to select ISAKMP SA?

thanks

/phoenixcry
>The cookie.
>
>rwt
>---
>Robert Tashjian
>rwt@netopia.com
>----- Original Message ----- 
>From: <phoenixcry@sina.com>
>To: <ipsec@lists.tislabs.com>
>Sent: Tuesday, April 23, 2002 12:00 AM
>Subject: Can the two entities have multiple ISAKMP SAs?
>
>
>> In RFC2408, it says: 'Two entities (e.g.  ISAKMP servers) can
>>    negotiate (and have active) multiple ISAKMP SAs.'
>> If the two entities can have multiple ISAKMP SAs,
>> Which field of the packet negociating Phrase II SAs indicate
>> the ISAKMP SA used to encode the packet?
>> Thanks for your answer.
>> 
>
>
>
>.

Prev by Date: Dead Peer Detection (DPD)
Next by Date: IPsec Monitoring Mib
Prev by thread: RE: Can the two entities have multiple ISAKMP SAs?
Next by thread: Extended seq number
Index(es):
- Date
- Thread