[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SA andfirst CHILD_SA ??

To: Yoav Nir <ynir@netvision.net.il>
Subject: Re: [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SA andfirst CHILD_SA ??
From: Tero Kivinen <kivinen@iki.fi>
Date: Mon, 23 Aug 2004 13:10:41 +0300
Cc: ipsec@ietf.org, wadood <abdul.wadood@gmail.com>
In-reply-to: <95460056-F33E-11D8-993B-000393AD410A@netvision.net.il>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=unsubscribe>
References: <7658940f04081301061665599@mail.gmail.com><95460056-F33E-11D8-993B-000393AD410A@netvision.net.il>
Sender: ipsec-bounces@ietf.org

Yoav Nir writes:
> You need at least one proposal in an SA payload in message #1, and at 
> least one proposal in an SA payload in message #3.
> 
> If you do not include an SA payload in message #3, that says that you 
> don't want to create a child-SA.

SAi2, and SAr2 are not optional in the current draft, thus there is
no way not to create the child-SA during the initial IKE exchange. 
-- 
kivinen@safenet-inc.com

_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec

Follow-Ups:
- RE: [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SAandfirst CHILD_SA ??
  - From: "Yoav Nir" <ynir@checkpoint.com>

References:
- [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SA andfirst CHILD_SA ??
  - From: wadood <abdul.wadood@gmail.com>
- Re: [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SA andfirst CHILD_SA ??
  - From: Yoav Nir <ynir@netvision.net.il>

Prev by Date: Re: [Ipsec] Public IP address & IP mobility
Next by Date: Re: [Ipsec] Public IP address & IP mobility
Previous by thread: Re: [Ipsec] Number of Proposals in IKE_SA_INIT exchange forIKE_SA and first CHILD_SA ??
Next by thread: RE: [Ipsec] Number of Proposals in IKE_SA_INIT exchange for IKE_SAandfirst CHILD_SA ??
Index(es):
- Date
- Thread