Hi all, We have posted -02 of the IKEv2 reliable transport draft. The main change is a new Section 3.7 (UDP Reachability Verification) to better handle ESP probing when IKEv2 starts over TCP. Diff: https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-ikev2-reliable-transport-02
Thanks, -Tiru and Valery ---------- Forwarded message --------- From: <[email protected]> Date: Sat, 18 Apr 2026 at 12:31 Subject: New Version Notification for draft-ietf-ipsecme-ikev2-reliable-transport-02.txt To: Tirumaleswar Reddy.K <[email protected]>, Valery Smyslov <[email protected]> A new version of Internet-Draft draft-ietf-ipsecme-ikev2-reliable-transport-02.txt has been successfully submitted by Tirumaleswar Reddy and posted to the IETF repository. Name: draft-ietf-ipsecme-ikev2-reliable-transport Revision: 02 Title: Separate Transports for IKE and ESP Date: 2026-04-18 Group: ipsecme Pages: 10 URL: https://www.ietf.org/archive/id/draft-ietf-ipsecme-ikev2-reliable-transport-02.txt Status: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ikev2-reliable-transport/ HTMLized: https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-ikev2-reliable-transport Diff: https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-ikev2-reliable-transport-02 Abstract: The Internet Key Exchange protocol version 2 (IKEv2) can operate either over unreliable (UDP) transport or over reliable (TCP) transport. If TCP is used, then IPsec tunnels created by IKEv2 also use TCP. This document specifies how to decouple IKEv2 and IPsec transports so that IKEv2 can operate over TCP, while IPsec tunnels use unreliable transport. This feature allows IKEv2 to effectively exchange large blobs of data (e.g., when post-quantum algorithms are employed) while avoiding performance problems that arise when IPsec uses TCP. The IETF Secretariat
_______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
