[IPsec] Issue Tracker (was RE: Issue #15: Message ID reset to 0 after IKE SA rekey)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[IPsec] Issue Tracker (was RE: Issue #15: Message ID reset to 0 after IKE SA rekey)

To: "ipsec at ietf.org" <ipsec at ietf.org>
Subject: [IPsec] Issue Tracker (was RE: Issue #15: Message ID reset to 0 after IKE SA rekey)
From: Yaron Sheffer <yaronf at checkpoint.com>
Date: Tue, 23 Sep 2008 18:32:25 +0300
Accept-language: en-US
Acceptlanguage: en-US
Delivered-to: ietfarch-ipsec-web-archive at core3.amsl.com
Delivered-to: ipsec at core3.amsl.com
In-reply-to: <18648.64340.108935.551146 at fireball.kivinen.iki.fi>
List-archive: <http://www.ietf.org/pipermail/ipsec>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: Discussion of IPsec protocols <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
References: <08E45D03-6381-48CD-A839-A24A4430A0A8 at checkpoint.com> <18648.51633.237900.734643 at fireball.kivinen.iki.fi> <6944AADF-9CE8-4E2D-80AF-7D077054F57F at checkpoint.com> <18648.64340.108935.551146 at fireball.kivinen.iki.fi>
Sender: ipsec-bounces at ietf.org
Thread-index: Ackdh68FtekSPQd4T1Wezk/EgWX4HQACKoTA
Thread-topic: Issue Tracker (was RE: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey)

In case you were wondering, the ipsecme Issue Tracker is available at: http://trac.tools.ietf.org/wg/ipsecme/trac/report

Right now all we have is Tero’s comments on IKEv2-bis. But there are more coming.

Thanks,

Yaron

-----Original Message-----
From: ipsec-bounces at ietf.org [mailto:ipsec-bounces at ietf.org] On Behalf Of Tero Kivinen
Sent: Tuesday, September 23, 2008 17:21
To: Yoav Nir
Cc: ipsec at ietf.org; Paul Hoffman
Subject: Re: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey

Yoav Nir writes:

> I think that's a good idea, although what would they use for the

> initial message ID for the new IKE SA. A random value? The MsgIDs

> from the old SA?

They used the message id from old SA.

Some also misread the "The IKE_SA initial setup messages will always

be number 0 and 1." to mean that no other messages can be with message

id 0 or 1 than those IKE SA setup messages (i.e. they had special

handling for message id 0 packets).

> Paul, I think we can accept this and move that last sentence to the

> main part of the message ID description.

--

kivinen at safenet-inc.com

_______________________________________________

IPsec mailing list

IPsec at ietf.org

https://www.ietf.org/mailman/listinfo/ipsec

Scanned by Check Point Total Security Gateway.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
IPsec mailing list
IPsec at ietf.org
https://www.ietf.org/mailman/listinfo/ipsec

References:
- [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
  - From: Yoav Nir
- [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
  - From: Tero Kivinen
- Re: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
  - From: Yoav Nir
- Re: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
  - From: Tero Kivinen

Prev by Date: Re: [IPsec] Use of IKE to obtain address of home agent
Next by Date: [IPsec] OSPFv3 Authentication
Previous by thread: Re: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
Next by thread: Re: [IPsec] Issue #15: Message ID reset to 0 after IKE SA rekey
Index(es):
- Date
- Thread

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.