RFC 3456:Dynamic Host Configuration Protocol (DHCP...
RFC-Ref

A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W

SA

Click on the red underlined text to get to the source

3. Scenario overview
... security gateway in a main mode or aggressive mode exchange. This IKE SA then serves to secure additional quick mode IPsec SAs ...
... IKE SA then serves to secure additional quick mode IPsec SAs. b. The remote host ...
... b. The remote host establishes a DHCP SA with the IPsec tunnel mode server in a quick mode ...
... server in a quick mode exchange. The DHCP SA is an IPsec tunnel mode SA established to protect initial DHCPv4 ...
... DHCP SA is an IPsec tunnel mode SA established to protect initial DHCPv4 traffic between the ...
... security gateway and the remote host. The DHCP SA MUST only be used for DHCP traffic ...
... used for DHCP traffic. The details of how this SA is set up are described in Section 4.1. ...
... remote host and the security gateway using the DHCP SA established in step b. After the DHCP conversation completes, the remote host ...
... d. The remote host MAY request deletion of the DHCP SA since future DHCP messages will be carried over a new IPsec ...
... remote host and the security gateway MAY continue to use the same SA for all subsequent traffic by adding temporary SPD ...
... tunnel is required, the remote host establishes a tunnel mode SA to the security gateway in a quick mode exchange. ...
... intranet are now tunneled over this IPsec tunnel mode SA. Since the security parameters ...
... Since the security parameters used for different SAs are based on the unique requirements of the remote host ...


4. Detailed description
... This section provides details relating to the messages exchanged during the setup and teardown of the DHCP SAs. ...
... interface to the security gateway, an IKE Phase 1 SA is established between the Internet interface ...
... (quick mode) DHCP SA tunnel mode SA is then established. The key lifetime ...
... quick mode) DHCP SA tunnel mode SA is then established. The key lifetime for the DHCP ...
... lifetime for the DHCP SA SHOULD be on the order of minutes since it will only be temporary. The remote host SHOULD use an IDci payload ...
... port 67. The DHCP SA is established as a tunnel mode SA with filters set ...
... 67. The DHCP SA is established as a tunnel mode SA with filters set as follows: ...
... configuration lease, and is attempting to renew it. In the latter case, the DHCP SA will initially be used to send a DHCPREQUEST rather than a DHCPDISCOVER message ...
... DHCPDISCOVER or DHCPREQUEST) is then tunneled to the security gateway using the tunnel mode SA. Note that since the DHCPDISCOVER packet has a broadcast ...
... which is tunneled to security gateway using the DHCP SA. ...
... DHCPNAK message, which is forwarded down the DHCP SA by the security gateway. The remote host ...
... Internet interface can establish a new IPsec tunnel mode SA to the security gateway. The remote host ...
... delete the DHCP tunnel mode SA. All future DHCP messages sent by the client, ...
... DHCPDECLINE, and DHCPRELEASE messages will use the newly established VPN SA. Similarly, all DHCP messages subsequently sent by the DHCPv4 server will be forwarded by ...
... security gateway (acting as a DHCP Relay) using the IPsec tunnel mode SA, including DHCPOFFER, DHCPACK, and DHCPNAK ...

A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W

Google
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org