Re: [MEXT] TLV header in DSMIP

["Sri Gundavelli" <sgundave at cisco.com>]

> >
> >
> > IPv4-UDP-ESP-GRE-(IPv4, IPv6) -- 3948 is in use, UDP port 4500.
> > IPv4-UDP-TLV-GRE-(IPv4, IPv6) -- DSMIP6 port.
> >
> > This is ok.
> 
> => If you want to have ESP come right after the TLV then please send  
> some text to describe this behaviour in terms of IPsec 
> operation. I'm  
> trying to avoid extending the IPsec
> mess in the spec to strange cases that need more inquiries and more  
> time at this stage. So I'd rather have that specified elsewhere.
> I think the easiest thing now is to do the format I sent above and  
> later if you want to add ESP/AH ...etc then you can specify 
> that in a  
> draft.
> 

Sure. I understand the pain dealing with all these IPsec issues that
were raised in the last few months.

However, on this, probably there is not much to specify. Atleast from
an implementation angle, its matter of implementing a tunnel interface
with a given encap mode and the ESP header just goes after the TLV,
just as how 3948 allows ESP right after UDP. We can borrow some text
from Sec 3.4 [3948]. Its just one more encap layer after UDP.

Appears to be straight forward to me. But, I'm not sure what issues
you or Pasi is referring to. 

Sri













> Hesham
> 
> >
> >
> > Thanks
> > Sri
> >
> >
> >
> >
> >> It seems like it would be sufficient to only define this 
> now for GRE
> >> and if someone comes up with a need for using IP/IPsec
> >> directly after
> >> the TLV header they can define that behaviour and request 
> a new type
> >> value.
> >>
> >> So the new draft would only allocate one value for GRE.
> >>
> >> Any objections to this ? please respond quickly, we need to finish
> >> this ASAP.
> >>
> >> Thanks,
> >> Hesham
> >> _______________________________________________
> >> MEXT mailing list
> >> MEXT at ietf.org
> >> https://www.ietf.org/mailman/listinfo/mext
> >
> 

_______________________________________________
MEXT mailing list
MEXT at ietf.org
https://www.ietf.org/mailman/listinfo/mext