Re: [MEXT] DSMIPv6 Security considerations section 5.1

To: <Hesham at elevatemobile.com>, <julien.IETF at laposte.net>, <Pasi.Eronen at nokia.com>, <mext at ietf.org>
Subject: Re: [MEXT] DSMIPv6 Security considerations section 5.1
From: <Christian.Kaas-Petersen at tietoenator.com>
Date: Wed, 20 Feb 2008 12:36:29 +0100
Delivered-to: ietfarch-mip6-web-archive at core3.amsl.com
Delivered-to: mext at core3.amsl.com
In-reply-to: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAAZgswlBrljUKcZNe3mbTCm8KAAAAQAAAAYdlNUEGpN0y5S625Kk8jtAEAAAAA at elevatemobile.com>
List-archive: <http://www.ietf.org/pipermail/mext>
List-help: <mailto:mext-request@ietf.org?subject=help>
List-id: Mobile IPv6 EXTensions WG <mext.ietf.org>
List-post: <mailto:mext@ietf.org>
List-subscribe: <http://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=subscribe>
List-unsubscribe: <http://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=unsubscribe>
References: <B356D8F434D20B40A8CEDAEC305A1F240531212B at esebe105.NOE.Nokia.com> <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAAZgswlBrljUKcZNe3mbTCm8KAAAAQAAAAYdlNUEGpN0y5S625Kk8jtAEAAAAA at elevatemobile.com>
Sender: mext-bounces at ietf.org
Thread-index: AchjOp+tBBZPPj39Q6+7x6ZGZVfkIgPvM+kgAC5nnHA=
Thread-topic: [MEXT] DSMIPv6 Security considerations section 5.1

Just a small comment below. 

> -----Original Message-----
> From: mext-bounces at ietf.org [mailto:mext-bounces at ietf.org] On 
> Behalf Of Hesham Soliman
> Sent: 19. februar 2008 14:14
> To: 'Julien Laganier'; Pasi.Eronen at nokia.com; mext at ietf.org
> Subject: [MEXT] DSMIPv6 Security considerations section 5.1
> 
> In order to allow the DSMIPv6 implementation in the home 
> agent to detect the
> presence of a NAT on the path to the  mobile node, it needs 
> to compare the
> outer IPv4 source address with the IPv4 address in the 
> alt-care-of address
> option. This implies that the information in the outer header will be

--> "will be" to be replaced with "will have to be"

> preserved after IPsec processing and made  available to the DSMIPv6
> implementation in the home agent. Depending on the home agent's
> implementation, meeting this  requirement may require changes 
> to the IPsec
> implementation. 

Christian
_______________________________________________
MEXT mailing list
MEXT at ietf.org
http://www.ietf.org/mailman/listinfo/mext

References:
- [MEXT] IPsec use in draft-ietf-mext-nemo-v4traversal-00
  - From: Pasi.Eronen
- [MEXT] DSMIPv6 Security considerations section 5.1
  - From: Hesham Soliman

Prev by Date: [MEXT] draft-wong-mext-simultaneous-ps-00
Next by Date: Re: [MEXT] draft-wong-mext-simultaneous-ps-00
Previous by thread: [MEXT] Offlist -- Re: DSMIPv6 Security considerations section 5.1
Next by thread: Re: [MEXT] DSMIPv6 Security considerations section 5.1
Index(es):
- Date
- Thread

Re: [MEXT] DSMIPv6 Security considerations section 5.1

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.