[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Confirm decision on identity handling.

To: jknowles@SonicWALL.com, <scott@airespace.com>, <ipsec@lists.tislabs.com>
Subject: RE: Confirm decision on identity handling.
From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Date: Wed, 23 Apr 2003 15:30:07 -0700
In-Reply-To: <385918F84B55DC4E9542E0A4812F4131074AE7@us0exb01.us.sonicwall.com>
References: <385918F84B55DC4E9542E0A4812F4131074AE7@us0exb01.us.sonicwall.com>
Sender: owner-ipsec@lists.tislabs.com

At 11:47 AM -0700 4/23/03, jknowles@SonicWALL.com wrote:
>I think the purpose of the ID payload when using
>certs is (was) to specify which of several possible IDs
>contained in the cert should be used for policy
>lookup.

There is nothing in the IKEv2 spec that says this, and there is 
nothing in RFC 2409 that says this. Hence, the desire for more 
specificity in IKEv2.

--Paul Hoffman, Director
--VPN Consortium

Follow-Ups:
- Re: Confirm decision on identity handling.
  - From: "Scott G. Kelly" <scott@airespace.com>

References:
- RE: Confirm decision on identity handling.
  - From: jknowles@SonicWALL.com

Prev by Date: Re: Confirm decision on identity handling.
Next by Date: Re: Confirm decision on identity handling.
Prev by thread: Re: Confirm decision on identity handling.
Next by thread: Re: Confirm decision on identity handling.
Index(es):
- Date
- Thread