|Main Archive Page > Month Archives > ipsec archives|
On Sep 4, 2009, at 5:53 PM, David Wierbowski wrote:
>Yes, I will soften the language a bit, but I won't mention a DELETE payload. If some implementations do it.
>others may come to expect it. We don't want to encourage that by suggesting that it's a good idea.
Yoav, Why is it a a bad idea to include a DELETE payload in this case?
Because the IKE SA was not really created, so there is no IKE SA to delete. It's a bad idea because it is superfluous, and we don't want to risk anyone relying on this.