Re: IKEv2 payload #14

[Michael Richardson <mcr@sandelman.ottawa.on.ca>]

-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Stephen" == Stephen C Koehler <koehler@securecomputing.com> writes:
    Stephen>     3. Move any conflicting payload definitions to new numbers
    Stephen>     in IKEv2, but 
    Stephen>        don't change the ones that have not changed in structure.

    Stephen>     4. Make all IKEv2 payloads have numbers distinct from those
    Stephen>     in IKEv1,  
    Stephen>        regardless of whether the structure or meaning has changed.

    Stephen> I would very much like for IKEv2 to use option (3).  (4) is
    Stephen> perhaps overkill, 
    Stephen> but I could be convinced otherwise.

  #4 has the advantage if there are any semantic differences.
  Also, it likely has better debugging characteristics...

  So, I agree - 3 or 4. 

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBPvTQ8oqHRg3pndX9AQFgNQQA4nC/k7cEjKEFD3I+y9tjiI3o14Lrt6lM
QtzZlkGNx65t8kwNGAZYa/6+SahIqQeQoL5pkCRo3woQVrWa9IGTftR9vpg/pZNK
xCyixNiUkRqXG59Eqz3Flt39lMsCMazvbnT97eRkkOHO3zoYKAEsHSq4cqIYqFPQ
xfKL7WZN/OU=
=0fZ+
-----END PGP SIGNATURE-----