[IPsec] Question: Inconsistent statements about what the node shall do when receving ESP packets with unknown SPI.

Pål Dammvik writes: > Think I have discovered a small inconsistency in RFC 7296 with > regards to the actions a node shall take if it received ESP packets > with an unknown SPI. Those cases are not exactly same. I.e., the section 1.5 explictly talks about receiving ESP packet with unknown SPI. The

[IPsec] Milestones changed for ipsecme WG

Changed milestone "IETF Last Call on Split-DNS Configuration for IKEv2", set due date to April 2018 from February 2017. Changed milestone "IETF Last Call on Implicit IV in IPsec", set due date to April 2018 from February 2017. Changed milestone "IETF Last Call on partially quantum resistant IKEv2

[IPsec] Question: Inconsistent statements about what the node shall do when receving ESP packets with unknown SPI.

Think I have discovered a small inconsistency in RFC 7296 with regards to the actions a node shall take if it received ESP packets with an unknown SPI. In section 1.5 it’s stated: “In the first case, if the receiving node has an active IKE SA to the IP address from whence the packet came, it MAY