Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traffic-visibility-05
gabriel montenegro <g_e_montenegro@yahoo.com> Mon, 13 July 2009 16:04 UTC
Return-Path: <g_e_montenegro@yahoo.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 264B628C177 for <ipsec@core3.amsl.com>; Mon, 13 Jul 2009 09:04:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AFtlJEkQFdeC for <ipsec@core3.amsl.com>; Mon, 13 Jul 2009 09:04:56 -0700 (PDT)
Received: from web82605.mail.mud.yahoo.com (web82605.mail.mud.yahoo.com [68.142.201.122]) by core3.amsl.com (Postfix) with SMTP id 4E1D33A690E for <ipsec@ietf.org>; Mon, 13 Jul 2009 09:04:55 -0700 (PDT)
Received: (qmail 54909 invoked by uid 60001); 13 Jul 2009 16:05:23 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1247501123; bh=4P4hMklHBjsbaWA72c+iWikRuOn57kCVYQGStOzpf8U=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=CTqbsyaAZpqJVe78xSzttYTbBJuMZAI6lqR+s2Wb+PWTxMBMWG4oss2o/LRv3trDdm2HF4OlCBwLNYKSX7qxXRFzbHSqnyQbwbFjBwMVGlfkG4CU1oQTtVlzJ6t1zbknCNiHS+K0gNzOFdoBIekDvj7lwXtMNHZa9/7/GKWFOVE=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=1ZBS2BO3AeP7GpjaBNXVIK2AN4DQZh0xWvNGoPqcSD2WxV3RBSvsubl9R26YY5oVasdDcy5uNYIgvov0b4a/dGdgqKdz1C0u/zp1zco0kHmmBHOM5wSeCaQUBwLgxnCNaHjv3rc1UHjhhf77hv7MlODOnAnVKb86Vzrf/nZEDow=;
Message-ID: <372852.53939.qm@web82605.mail.mud.yahoo.com>
X-YMail-OSG: RpRAclsVM1ldienM6n6L5N60MXn3iPGr7w_AdRMVX1.W5y26xKJudsKURSr_hWrUcIDtrH5YrO7_KvYob.Z2btmbR7GP_mUB4MoBJN5__CscjB.U2WxUTGORav66OsEsRquWsUVA0ZdQ0UfCvEDOJh8M8X5aG9JwobxLdyQ6oKxF7g94I7R7rs0Jc0DN7ZgQNYJqLyHuHQqpWknxb6DM9zRZVHIMuHRscSzeMhNsLrAzbvENyfqn0vIDdhOKpk2.t3QSBewR5G.UUwbHN6h7HgJC3BhDCst.vxhbq_ojGEIZGsN3Ydhgee8vd9nkOFBduOMVvMCKusJJlfrdj3y2DVGmhIpU
Received: from [12.197.88.10] by web82605.mail.mud.yahoo.com via HTTP; Mon, 13 Jul 2009 09:05:23 PDT
X-Mailer: YahooMailRC/1357.22 YahooMailWebService/0.7.289.10
References: <7F9A6D26EB51614FBF9F81C0DA4CFEC8E8ABD594E4@il-ex01.ad.checkpoint.com> <006FEB08D9C6444AB014105C9AEB133F433538CE3E@il-ex01.ad.checkpoint.com>
Date: Mon, 13 Jul 2009 09:05:23 -0700
From: gabriel montenegro <g_e_montenegro@yahoo.com>
To: Yoav Nir <ynir@checkpoint.com>, Yaron Sheffer <yaronf@checkpoint.com>, "ipsec@ietf.org" <ipsec@ietf.org>
In-Reply-To: <006FEB08D9C6444AB014105C9AEB133F433538CE3E@il-ex01.ad.checkpoint.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="0-758038563-1247501123=:53939"
Subject: Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traffic-visibility-05
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Jul 2009 16:04:57 -0000
Hi Yoav, Good catch, we say offset *to* what, but we don’t say *from* where. Among the co-authors, we'd like to suggest this as a simple text change to address this: OLD: HdrLen, 8 bits: Offset to the beginning of the Payload Data in octets. NEW: HdrLen, 8 bits: Offset from the beginning of the WESP header to the beginning of the Payload Data within the encapsulated ESP header, in octets. Does this sound ok? BTW, in the case of TrailerLen we do say both *from* as well as *to*. Gabriel > >From: Yoav Nir <ynir@checkpoint.com> >To: Yaron Sheffer <yaronf@checkpoint.com>; "ipsec@ietf.org" <ipsec@ietf.org> >Sent: Tuesday, July 7, 2009 4:35:19 AM >Subject: Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traffic-visibility-05 > > >I’ve read it again, and it seems fine. One minor issue, though. > >Section 2 describes the WESP header format. It has the following: > HdrLen, 8 bits: Offset to the beginning of the Payload Data in > octets. The receiver MUST ensure that this field matches with > the header offset computed from using the negotiated SA and MUST > drop the packet in case it doesn't match. > >I think I know what they mean, but it’s entirely not clear what this field is supposed to hold. Is it the size of the existing ESP header? Is it that + 4? How about “the combined length of all the ESP fields that precede the “Payload Data” field” in ESP” ? > > > > ________________________________ >From:ipsec-bounces@ietf.org [mailto:ipsec-bounces@ietf.org] On Behalf Of Yaron Sheffer >Sent: Saturday, July 04, 2009 10:48 PM >To: ipsec@ietf.org >Subject: [IPsec] WG Last Call: draft-ietf-ipsecme-traffic-visibility-05 > >This is the beginning of a two-week WG Last Call, which will end July 18. The target status for this document is Proposed Standard. The current document is at http://tools.ietf.org/html/draft-ietf-ipsecme-traffic-visibility-05. > >If you have not read the document before now, please do so. Having fresh eyes on the document often brings up important issues. If you HAVE read it before, please note that there have been several revisions since San Francisco , so you might want to read it again (plus it’s a short document). Send any comments to the list, even if they are as simple as "I read it and it seems fine". > >Please clearly indicate the position of any issue in the Internet Draft, and if possible provide alternative text. Please also indicate the nature or severity of the error or correction, e.g. major technical, minor technical, nit, so that we can quickly judge the extent of problems with the document. > >Thanks, > Yaron > >Email secured by Check Point > >
- [IPsec] WG Last Call: draft-ietf-ipsecme-traffic-… Yaron Sheffer
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Jack Kohn
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Yoav Nir
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… QIU Ying
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… gabriel montenegro
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… gabriel montenegro
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Yoav Nir
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… QIU Ying
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Grewal, Ken
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… QIU Ying
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Grewal, Ken
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Bhatia, Manav (Manav)
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… QIU Ying
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… QIU Ying
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Bhatia, Manav (Manav)
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Yaron Sheffer
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Bhatia, Manav (Manav)
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-traf… Grewal, Ken
- [IPsec] WG Last Call: draft-ietf-ipsecme-roadmap-… Yaron Sheffer
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-road… Paul Hoffman
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-road… Laganier, Julien
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-road… Greg Daley
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-road… Scott C Moonen
- Re: [IPsec] WG Last Call: draft-ietf-ipsecme-road… Yoav Nir
- [IPsec] Comments on draft-ietf-ipsecme-roadmap-03 Suresh Krishnan