Paul Wouters writes: > I think the concept is good, but I have questions on "supported" vs > "accepted". > > Often in these cases the support for all thee auth methods are there, it is > just that for some connections we require one auth type and for another > connection another auth type. > > I am not sure sending indications in IKE_SA_INIT helps most cases, but it will > help some if we remember the ones we received when it is time to generate the > AUTH payload. > > adopting and talking about it more would be good.
This document has been adopted long time a go, and we are now in the working group last call to see whether it is ready. If you still have things you want to talk about it, then I can see it clearly is not yet ready to be published... -- [email protected] _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
