Dear Dharmanandane, Sincerely sorry for the delay to respond to you.
Thank you very much for your comments on my draft. Yes, I fully agree with your understanding. The reason that I did not include these two parameters in the draft's sample control flow because the existing IKEv2 RFC 5996 have already the procedures that describe the detection of NAT. Hence, I only want to describe the minimum that explains the proposal from the draft. Hoping that it is acceptable to you. Thanks again for your kind suggestion. Tricci Dharmanandana Reddy Pothula <[email protected]> 02/03/2012 06:19 AM Please respond to [email protected] To [email protected] cc [email protected] Subject [IPSec]: IKEv2 configuration payload extension for draft-so-ipsecme-ikev2-cpext-00.txt Hi Tricci, My understanding follows. Please correct me, if I am wrong. The proposed solution is required only when NA(P)T is detected. The FAP(Initiator) should advertise support for NAT Traversal, so it must send NAT_DETECTION_SOURCE_IP and NAT_DETECTION_DESTINATION_IP payloads in the IKE_SA_INIT request. I meant NAT is not optional for this proposed solution. So I feel it may be appropriate to mention ‘NAT_DETECTION_SOURCE_IP and NAT_DETECTION_DESTINATION_IP’ payloads in high level control flow in section 3. Is not it? Regards, -------------------------------------------------------- ZTE Information Security Notice: The information contained in this mail is solely property of the sender's organization. This mail communication is confidential. Recipients named above are obligated to maintain secrecy and are not permitted to disclose the contents of this communication to others. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. Any views expressed in this message are those of the individual sender. This message has been scanned for viruses and Spam by ZTE Anti-Spam system.
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
