Subject: Re: ipv6 source address selection
To: Michael van Elst <firstname.lastname@example.org>
From: Jonathan Stone <jonathan@Pescadero.dsg.stanford.edu>
Date: 09/25/2007 13:55:26
In message <20070925204829.GA22370@serpens.de>Michael van Elst writes
>On Tue, Sep 25, 2007 at 04:20:01PM +0900, JINMEI Tatuya / ???? wrote:
>> I don't understand how the (FAST_)IPSEC implementation relates to
>> RFC3484, but I don't know the answer anyway.
>There shouldn't be any relation. I was just asking because I
>don't know how much FAST_IPSEC interferes with the IPv6 code.
Perhaps you meant to say you don't know how much FAST_IPSEC interferes
with the *KAME* IPv6 code.
In practice, the choice is a config-time choice between one or the
other. NetBSD's stated plan is that the KAME code will be deprecated
once FAST_IPSEC supports IPv6 and can functionally replace the KAME
Ipv6 code. I don't use IPv6, so can't speak to where the SoC project
reached that milestone or not.