[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ipsec] FW: Remaining issues for IKEv2

To: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Subject: Re: [Ipsec] FW: Remaining issues for IKEv2
From: kseo@bbn.com
Date: Tue, 11 May 2004 20:03:10 -0400
Cc: "Charlie Kaufman" <charliek@microsoft.com>, <ipsec@ietf.org>
In-reply-to: <p06100513bcc6b2970d0a@[10.20.30.249]>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=unsubscribe>
References: <F5F4EC6358916448A81370AF56F211A502B2F688@RED-MSG-51.redmond.corp.microsof t.com> <p0610050ebcc5e4aefc8e@[10.81.115.79]><p06100516bcc5f294f0d1@[10.20.30.249]><p06100502bcc6ab7b1fc7@[10.81.115.79]><p06100513bcc6b2970d0a@[10.20.30.249]>
Sender: ipsec-admin@ietf.org

Folks,

Just to provide a pointer... Section 7 of the current draft of 
2401bis contains the 3 options that Steve posted to the list for 
handling outgoing fragments on the protected side.  The text reflects 
changes as best I could figure from the list discussion. Since the 
community hasn't yet decided whether options 2 and 3 should be MAY or 
SHOULD, the draft says "MAY/SHOULD" for each.
	- Option 1 doesn't require any changes to IKEv2 and seems to
	  be accepted by the community.
	- Option 2 requires support for OPAQUE, so IKEv2 would need
	  to support this value.
	- For the Option 3 (stateful fragment checking), we put in the
	  suggestion from Tero (a new notify message).  This would
	  need IKEv2 support.

Karen


_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec

References:
- Re: [Ipsec] FW: Remaining issues for IKEv2
  - From: Stephen Kent <kent@bbn.com>
- Re: [Ipsec] FW: Remaining issues for IKEv2
  - From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
- Re: [Ipsec] FW: Remaining issues for IKEv2
  - From: Stephen Kent <kent@bbn.com>
- Re: [Ipsec] FW: Remaining issues for IKEv2
  - From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>

Prev by Date: RE: [Ipsec] FW: Remaining issues for IKEv2
Next by Date: [Ipsec] IPsec AH & ESP -- final summary of changes
Previous by thread: Re: [Ipsec] FW: Remaining issues for IKEv2
Next by thread: Re: [Ipsec] FW: Remaining issues for IKEv2
Index(es):
- Date
- Thread