Re: [MEXT] TLV header in DSMIP

To: Pasi.Eronen at nokia.com
Subject: Re: [MEXT] TLV header in DSMIP
From: "Vijay Devarapallli" <dvijay at gmail.com>
Date: Fri, 4 Apr 2008 23:14:33 -0700
Cc: mext at ietf.org
Delivered-to: ietfarch-mip6-web-archive at core3.amsl.com
Delivered-to: mext at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=s+Ib83oT3Y6kfi9+8WGe7bGwSKrwaFWyuMiO5e/hLSg=; b=q6yyhGx/7ounCq7GimPGfnpYbUiVi/ubuW+z9GhjzUdbcb4bsIy37Bn6FtznBUicxcpvu7sFuTu77vyfKp7r6Q90lV2WoPb33GQxnN+i/Qv8X3xeNlAt67JiUXP1NPb782FdXGk3cPtb+oCh48xQpbQsmEG0nLuW5QkW+oTqXGk=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Vrak8zvTbBZruKxTq/z+fkRhCKdbypFqpcF0+alY+R8jClmou3zQvzm11GjDtL9AGyI73ewJgsvgpW4l/6RLtlJBLBZD/8OibwKdK9+MuGXtnEgp4CGN7rLo0LyuHsldPVzuR1Mx6dilW7HeT20HcntVTOrWWzj984HD2A8fWsQ=
In-reply-to: <1696498986EFEC4D9153717DA325CB7247F106 at vaebe104.NOE.Nokia.com>
List-archive: <http://www.ietf.org/pipermail/mext>
List-help: <mailto:mext-request@ietf.org?subject=help>
List-id: Mobile IPv6 EXTensions WG <mext.ietf.org>
List-post: <mailto:mext@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=unsubscribe>
References: <FC91340F-574D-432B-9C16-FDC4522FA897 at elevatemobile.com> <f1f4dcdc0804031741k1d475666o1a2dc516c7323619 at mail.gmail.com> <1696498986EFEC4D9153717DA325CB7247F106 at vaebe104.NOE.Nokia.com>
Sender: mext-bounces at ietf.org

On Fri, Apr 4, 2008 at 2:42 AM,  <Pasi.Eronen at nokia.com> wrote:
> Vijay Devarapallli wrote:
>
>  > Without this, you end up using UDP port 4500 for IPsec protected
>  > data traffic between the mobile node and the home agent and the
>  > DS-MIPv6 UDP port for non-IPsec protected data traffic between the
>  > mobile node and the home agent. I would prefer to avoid this.
>
>  In the current spec (version -01) this is precisely the situation:
>  traffic protected with IPsec tunnel mode uses port 4500.

Ok, got it. I looked at the security considerations section again. I
forgot that in version 06, we mandate that port 4500 is always used
for IPsec protected payload traffic, irrespective of whether we use
vanilla UDP or TLV-header UDP encapsulation. In version 05 and
earlier, we didn't have this restriction. One could use the TLV-header
UDP encapsulation (and the DS-MIPv6 port) for the IPsec protected
payload traffic too.

Since we mandate that port 4500 is always used, it does not make sense
to reserve the 'IPsec Type" value in the TLV header. So, we can remove
that.

Vijay

>  (BU/BAck is protected with transport mode IPsec, but in that case,
>  the packet also has an IPv6 header, so the TLV-Header type would
>  be IPv6.)
>
>  Best regards,
>  Pasi
>
_______________________________________________
MEXT mailing list
MEXT at ietf.org
https://www.ietf.org/mailman/listinfo/mext

Follow-Ups:
- Re: [MEXT] TLV header in DSMIP
  - From: Sri Gundavelli

References:
- [MEXT] TLV header in DSMIP
  - From: Hesham Soliman
- Re: [MEXT] TLV header in DSMIP
  - From: Vijay Devarapallli
- Re: [MEXT] TLV header in DSMIP
  - From: Pasi.Eronen

Prev by Date: Re: [MEXT] Decisions, and next steps proposed in IETF71 MEXT meeting
Next by Date: Re: [MEXT] TLV header in DSMIP
Previous by thread: Re: [MEXT] TLV header in DSMIP
Next by thread: Re: [MEXT] TLV header in DSMIP
Index(es):
- Date
- Thread

Re: [MEXT] TLV header in DSMIP

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.