Behalf
> Of ext Tero Kivinen
> Sent: 28 January, 2010 14:18
> To: Eronen Pasi (Nokia-NRC/Helsinki)
> Cc: ipsec@ietf.org
> Subject: Re: [IPsec] RFC5555 and Section 2.23.1 (was: IKEv2bis,
> comments about sections 1-2)
>
>
pasi.ero...@nokia.com writes:
> > --
> > 2.11. Address and Port Agility
> >
> >IKE runs over UDP ports 500 and 4500, and implicitly sets up ESP and
> >AH associations for the same IP addresses it runs over.
> > --
Tero Kivinen wrote:
> > > What kind of things does the RFC require?
> >
> > Basically, it's assuming that even if you're running IKEv2 over IPv4
> > (and that IPv4 address is NATted), you can still negotiate transport
> > mode SAs for IPv6 addresses (which won't get NATted).
>
> Hmm Let m
pasi.ero...@nokia.com writes:
> Tero Kivinen wrote:
>
> > pasi.ero...@nokia.com writes:
> > > - Section 2.23.1: If the responder doesn't find SPD entry for
> > > transport mode with the modified traffic selectors, and does a lookup
> > > with the original selectors, if it finds an entry for transp
Tero Kivinen wrote:
> pasi.ero...@nokia.com writes:
> > - Section 2.23.1: If the responder doesn't find SPD entry for
> > transport mode with the modified traffic selectors, and does a lookup
> > with the original selectors, if it finds an entry for transport mode,
> > can it use it?
>
> I do not
pasi.ero...@nokia.com writes:
> - Section 2.23.1: If the responder doesn't find SPD entry for
> transport mode with the modified traffic selectors, and does a lookup
> with the original selectors, if it finds an entry for transport mode,
> can it use it?
I do not think it can use the transport mo
