[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Protocol and port fields in selectors

To: sakari.poussa@nokia.com
Subject: Re: Protocol and port fields in selectors
From: Joe Touch <touch@ISI.EDU>
Date: Thu, 26 Sep 2002 07:48:38 -0700
CC: ipsec@lists.tislabs.com
References: <F40FB5FE550A914F9C25AA54AB09E36818910C@esebe015.ntc.nokia.com>
Sender: owner-ipsec@lists.tislabs.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.1) Gecko/20020826

sakari.poussa@nokia.com wrote:
> Hi,
> 
> I have a question about protocol and src/dst port fields in the SAD selectors.
> 
> Is it allowed to have the protocol field as wildcard and still specify src/dst
> port as a specific value? Or is it so that transport layer protocol which actually
> has ports (like TCP/UDP/SCTP) must be specified along with the ports.
> 
> I guess it is the latter case according to the rfc2401, page 20 table, but
> I just wanted to be sure.

Not all transport protocols even have ports (e.g., IP, ICMP, and EGP are 
all 'transport' protocols, and none have ports). The port field is 
defined only relative to a particular transport protocol.

To cover multiple protocols under one port (e.g., TCP/NFS and UDP/NFS) 
seems to require multiple selectors.

Joe

References:
- Protocol and port fields in selectors
  - From: sakari.poussa@nokia.com

Prev by Date: Potential bakeoff in France in 2003
Next by Date: IKEv2 next version
Prev by thread: Protocol and port fields in selectors
Next by thread: Potential bakeoff in France in 2003
Index(es):
- Date
- Thread