[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Why is IDAccepted added?
At 10:36 PM +0800 11/28/02, king wu wrote:
>In "Adding revised identities to IKEv2" by Paul
>Hoffman, a new payload IDAccepted is added. Who can
>tell me why and give a example?
Certainly. If a responding IPsec system only accepts certificates and
cannot resolve URLs, the initiating system should not send a
hash-plus-URL. The IDAccepted method is a way for each side to say
what kind of IDs are supported before the other side sends its ID.
This prevents failures that could have been avoided.
--Paul Hoffman, Director
--VPN Consortium