[Ipsec] Query for IPv6 ICV

To: <ipsec at ietf.org>
Subject: [Ipsec] Query for IPv6 ICV
From: "Khan, Irfan" <Irfan_Khan at mentorg.com>
Date: Thu, 4 Nov 2004 14:43:35 +0500
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
Sender: ipsec-bounces at ietf.org
Thread-index: AcTCUsEux1phuWYDSuWc+hGAXkMO5g==
Thread-topic: Query for IPv6 ICV

Hi,

I’m trying to establish an IPSEC session over IPv6 with Windows XP and FreeBSD (Kame’s implementation) AH Transport mode with HMAC-MD5 authentication. Windows sends an ICV of 20 bytes (with 4 padded 0 bytes) and FreeBSD simply discards the packet.

RFC 2403 states that HMAC-MD5-96 produces a 128 bit authenticator value and a truncated value using the first 96 bits MUST be supported.

I want to know that IPSEC standards say about ICV size in case of IPv6.

Thanks in advance.

Kind regards,

Muhammad Irfan Khan

_______________________________________________
Ipsec mailing list
Ipsec at ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec

Follow-Ups:
- Re: [Ipsec] Query for IPv6 ICV
  - From: Stephen Kent

Prev by Date: Re: [Ipsec] 2401bis fragment checking for BYPASS/DISCARD
Next by Date: [Ipsec] Purpose of sequence numbers
Previous by thread: [Ipsec] Where is the source code of native IPsec in Linux kernel 2.6
Next by thread: Re: [Ipsec] Query for IPv6 ICV
Index(es):
- Date
- Thread

[Ipsec] Query for IPv6 ICV

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.