[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: 2401bis Issue # 86 -- Add IPv6 mobility header message type asselector
Jari Arkko writes:
> (Question: did you already cover ICMP types in some earlier
> update?)
IKEv2 already includes them:
----------------------------------------------------------------------
3.13.1 Traffic Selector
...
o Protocol ID (1 octet) - Value specifying an associated IP
protocol ID (e.g., UDP/TCP/ICMP). A value of zero means that
...
o Start_Port (2 octets) - Value specifying the smallest port
number allowed by this Traffic Selector. For protocols for
which port is undefined, or if all ports are allowed by
this Traffic Selector, this field MUST be zero. For the
ICMP protocol, the two one octet fields Type and Code are
treated as a single 16 bit integer port number for the
purposes of filtering based on this field.
o End_Port (2 octets) - Value specifying the largest port
number allowed by this Traffic Selector. For protocols for
which port is undefined, or if all ports are allowed by
this Traffic Selector, this field MUST be 65535. For the
ICMP protocol, the two one octet fields Type and Code are
treated as a single 16 bit integer port number for the
purposed of filtering based on this field.
--
kivinen@ssh.fi
SSH Communications Security http://www.ssh.fi/
SSH IPSEC Toolkit http://www.ssh.fi/ipsec/