Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 627fb6a) | patch
ikev2: IKE plugin manages the state of the protected tunnel interface 00/25200/2
authorNeale Ranns <nranns@cisco.com>
Mon, 17 Feb 2020 10:39:09 +0000 (10:39 +0000)
committerDamjan Marion <dmarion@me.com>
Mon, 17 Feb 2020 12:31:05 +0000 (12:31 +0000)
commit4dc5a43f4871c3f0a88ad0bb9041332bf3b03f1b
tree9a7f2fdff6998c7b40af912db7c088aba54708betree | snapshot
parent627fb6a16d8e7430e84aa664cb2b8f89a5688fabcommit | diff
ikev2: IKE plugin manages the state of the protected tunnel interface

Type: improvement

IKE will bring the tunnel up ince the negociation is complete and bring
it down when the session ends. It is the clinets responsibility to
manage the state of the tunnel before and after these events. So to
prevent any unencrpyted traffic egressing the tunnel before the session
is negpciated, the tunnel should be in the down state when it a
associated with the IKE session.

Change-Id: I8aee593c79ca006d6ab08f9fa560fbbf6f8dcc16
Signed-off-by: Neale Ranns <nranns@cisco.com>
src/plugins/ikev2/ikev2.c diff | blob | history
Vector Packet Processing