>>>>> On Fri, 7 Jul 2000 01:17:30 -0400 (EDT)
>>>>> Kris Kennaway <[EMAIL PROTECTED]> said:
kris> RFC 1933 doesn't seem to talk about any mechanism for actually
kris> establishing the IPv6o4 tunnel - are there any standards describing how to
kris> authenticate the creation of such a thing? A statically configured tunnel
kris> is fine, but when one of the endpoints is dynamic there needs to be some
kris> way for the mobile end to authenticate himself and bring the tunnel back
kris> up.
Though I don't know if this is standard, we are using Turmpet Dynamic
Tunnel Configuration Protocol for this purpose. The authentication
scheme is just like APOP. The DTCP implimentation is shipped with
KAME kit.
kris> Presumably, IPSEC AH should be used on the outer encapsulating packets to
kris> avoid e.g. another modem user in the dialup pool hijacking the tunnel
kris> after a user disconnects, but that still doesn't specify the handshake
kris> mechanism. Any suggestions?
DTCP doesn't have such encapsulation.
--
Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan
[EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
http://www.imasy.org/~ume/
---------------------------------------------------------------------
The IPv6 Users Mailing List
Unsubscribe by sending "unsubscribe users" to [EMAIL PROTECTED]
