[IPsec] Question about deleting a half-open child SA
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[IPsec] Question about deleting a half-open child SA
Suppose the initiator sends an SA payload
that contains both an AH and ESP proposal. Before receiving the response,
the initiator decides to close the half-open child SA. I assume that
the informational request should include two delete payloads, one for AH
and one for ESP. Is that correct?
Related to that question, I don't see
a requirement that all proposals in an SA payload have the same SPI. So,
in this example, it would be permissible for the AH and ESP proposals to
have different SPIs. Is that correct?
Keith Welter
IBM Enterprise Networking Solutions
1-415-545-2694 (T/L: 473-2694)
_______________________________________________
IPsec mailing list
IPsec at ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
