[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: suites vs. a la carte and IPcomp in IKEv2-05

To: dharkins@trpz.com
Subject: Re: suites vs. a la carte and IPcomp in IKEv2-05
From: Paul Koning <pkoning@equallogic.com>
Date: Fri, 28 Feb 2003 15:44:57 -0500
Cc: ipsec@lists.tislabs.com
References: <200302281717.h1SHHAE64102@homebrew.trpz.com>
Sender: owner-ipsec@lists.tislabs.com

>>>>> "Dan" == Dan Harkins <dharkins@trpz.com> writes:

 Dan> It appears that IPcomp was forgotten about when the decision was
 Dan> made to go to suites. IPcomp was later grafted into IKEv2 such
 Dan> that it is negotiated with NOTIFY payloads in an a la carte
 Dan> fashion.

I thought the plan was to announce (NOT negotiate) the ability to
decode IPcomp.  You don't need negotiation, because there's no need to
agree on anything.  All that you need is to announce the ability to
decompress, and then the sender can compress accordingly if and when
it chooses.

IKEv1 handled this by negotiation, but 90% of what it does for IPcomp
is unnecessary and confusing.

   paul

Follow-Ups:
- Re: suites vs. a la carte and IPcomp in IKEv2-05
  - From: Abraham Shacham <shacham@trpz.com>
- Re: suites vs. a la carte and IPcomp in IKEv2-05
  - From: Dan Harkins <dharkins@trpz.com>

References:
- suites vs. a la carte and IPcomp in IKEv2-05
  - From: Dan Harkins <dharkins@trpz.com>

Prev by Date: Re: suites vs. a la carte and IPcomp in IKEv2-05
Next by Date: Re: the encrypted payload in IKEv2-05
Prev by thread: Re: suites vs. a la carte and IPcomp in IKEv2-05
Next by thread: Re: suites vs. a la carte and IPcomp in IKEv2-05
Index(es):
- Date
- Thread