pana-2----Page:11
1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24  25  26  27  28  29 

Additional Approaches: (1)Using a PRPA as TIA IPv6: Configure a link-local and global before PANA (DHCPv6 or stateless) TIA=global, TOA=link-local Requires SPD selection based on the name (session-ID), not the IP address Explicit support in RFC2401bis Name is set, address selectors are NULL RFC2401? Not clear. Racoon’s generate_policy directive Authenticate peer by PSK, accept proposed TIA (skip SPD check), than create SPD Should we include this?

PPT Version