[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKE negotiation for ICMP message type selectors

To: Stephen Kent <kent@bbn.com>
Subject: Re: IKE negotiation for ICMP message type selectors
From: Bill Sommerfeld <sommerfeld@east.sun.com>
Date: Wed, 25 Jun 2003 20:59:40 -0400
cc: ipsec@lists.tislabs.com
In-Reply-To: Your message of "Wed, 25 Jun 2003 19:43:45 EDT." <p05210621bb1fdd98d403@[10.1.71.211]>
Reply-to: sommerfeld@east.sun.com
Sender: owner-ipsec@lists.tislabs.com

> For example, we've had discussion on the list about using ICMP 
> message type fields in lieu of port fields, when ICMP was the
> payload.
> 
> What do people think, and why?

Long overdue.  

Particularly important for IKE and IPv6 (as, pending introduction of
some facility to secure Neighbor Discovery) you likely want ND traffic
in clear while other ICMPv6 traffic is protected.

					- Bill

Follow-Ups:
- Re: IKE negotiation for ICMP message type selectors
  - From: Vijay Devarapalli <vijayd@iprg.nokia.com>
- Re: IKE negotiation for ICMP message type selectors
  - From: itojun@iijlab.net
- Re: IKE negotiation for ICMP message type selectors
  - From: Jari Arkko <jari.arkko@kolumbus.fi>

References:
- IKE negotiation for ICMP message type selectors
  - From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: issue with "per-interface SAD/SPD"
Next by Date: Re: IKE negotiation for ICMP message type selectors
Prev by thread: IKE negotiation for ICMP message type selectors
Next by thread: Re: IKE negotiation for ICMP message type selectors
Index(es):
- Date
- Thread