[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ICMP{,v6} type/code as a selector...

Dan McDonald wrote:
> While not listed in 2401 explicitly, couldn't one use ICMP/ICMPv6 type and
> code as a selector for a security association?  The implementation wouldn't
> be that tough; just overload the already-there port fields for type and code.

...or generalize the port fields into some sort of protocol-specific
selectors or something. That way, we could use type/code for icmp, SPI
for esp/ah, etc...