[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-ipsec-ikev2-04.txt



> Strongly agree. Get rid of lifetime info. Just rekey when you feel
> you should.

strongly disagree.

absent an expiration time, it's difficult to know when it's safe to
nuke inbound security associations from an unreachable and
unresponsive peer.