ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: "connection latching" -- comments on rfc2401bis (draft-ietf-ipsec-rfc2401bis-04.txt)]

2004-12-15 11:33:24
from [Nicolas Williams] [Permanent Link] 
On Wed, Dec 15, 2004 at 09:56:09AM -0800, Joe Touch wrote:

There's nothing in IPsec that knows about TCP connections now, and there
shouldn't be.

There might be utility to coordinating TCP with IKE, but that means that
the SA used by a packet needs to be set explicitly by the upper layer
rather inferring it from policy rules.

I.e., TCP may need to know about IPsec, not the other way around.


Connection latching should, indeed, be initiated by TCP -- but that does
not mean the matter shouldn't be mentioned in the IPsec architecture
doc.

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: "connection latching" -- comments on rfc2401bis (draft-ietf-ipsec-rfc2401bis-04.txt)], Joe Touch
Next by Date:  Re: New Last Call: 'Tags for Identifying Languages' to BCP, John Cowan
Previous by Thread:  Re: "connection latching" -- comments on rfc2401bis (draft-ietf-ipsec-rfc2401bis-04.txt)], Joe Touch
Next by Thread:  Re: Issue #719: Transparency/Openness of the IAOC (IASA transition te, Scott Bradner
Indexes:  [Date] [Thread] [Top] [All Lists]