[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Q on Traffic Selector Payload

To: "Ricky Charlet" <rcharlet@speakeasy.net>, "ipsec mailingList" <ipsec@lists.tislabs.com>
Subject: Re: Q on Traffic Selector Payload
From: Radia Perlman - Boston Center for Networking <Radia.Perlman@sun.com>
Date: Sat, 21 Jun 2003 18:11:09 -0400
Reply-To: <radia.perlman@sun.com>
Sender: owner-ipsec@lists.tislabs.com

The reason they're in IKE_AUTH is because creation of
the first child SA is piggybacked on the initial
creation of the IKE SA. (so really the IKE-AUTH
is doing a CREATE_CHILD_SA simultaneously).

Radia

"Ricky Charlet" <rcharlet@speakeasy.net> wrote:
>Howdy,
>
>	Why are there TS payloads in both IKE_AUTH  and CREATE_CHILD_SA? 
>Section 2.9 "Traffic Selector Negotiation" seems to discuss the TS 
>payloads only in the context of CREATE_CHILD_SA.
>
>
>---
>Ricky Charlet
>(formerly with Sonicwall and before that Redcreek)
>rcharlet@alumni.calpoly.edu
>510.324.3163
>

Prev by Date: Re: IKEv2 payload #14
Next by Date: Re: abandoning ike-monitor-mib, isakmp-di-mon-mib, and monitor-mib?
Prev by thread: Q on Traffic Selector Payload
Next by thread: IKE cookies
Index(es):
- Date
- Thread