Browse Prior Art Database

UDP Encapsulation of IPsec ESP Packets (RFC3948)

IP.com Disclosure Number: IPCOM000033927D
Original Publication Date: 2005-Jan-01
Included in the Prior Art Database: 2005-Jan-05
Document File: 16 page(s) / 30K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

A. Huttunen: AUTHOR [+5]

Abstract

This protocol specification defines methods to encapsulate and decapsulate IP Encapsulating Security Payload (ESP) packets inside UDP packets for traversing Network Address Translators. ESP encapsulation, as defined in this document, can be used in both IPv4 and IPv6 scenarios. Whenever negotiated, encapsulation is used with Internet Key Exchange (IKE).

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 9% of the total text.

Network Working Group                                        A. Huttunen

Request for Comments: 3948                          F-Secure Corporation

Category: Standards Track                                     B. Swander

                                                               Microsoft

                                                                V. Volpe

                                                           Cisco Systems

                                                              L. DiBurro

                                                         Nortel Networks

                                                             M. Stenberg

                                                            January 2005

                 UDP Encapsulation of IPsec ESP Packets

Status of this Memo

   This document specifies an Internet standards track protocol for the

   Internet community, and requests discussion and suggestions for

   improvements.  Please refer to the current edition of the "Internet

   Official Protocol Standards" (STD 1) for the standardization state

   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2005).

Abstract

   This protocol specification defines methods to encapsulate and

   decapsulate IP Encapsulating Security Payload (ESP) packets inside

   UDP packets for traversing Network Address Translators.  ESP

   encapsulation, as defined in this document, can be used in both IPv4

   and IPv6 scenarios.  Whenever negotiated, encapsulation is used with

   Internet Key Exchange (IKE).

Huttunen, et al.            Standards Track                     [Page 1]

RFC 3948         UDP Encapsulation of IPsec ESP Packets     January 2005

Table of Contents

   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  2

   2.  Packet Formats . . . . . . . . . . . . . . . . . . . . . . . .  3

       2.1.  UDP-Encapsulated ESP Header Format . . . . . . . . . . .  3

       2.2.  IKE Header Format for Port 4500  . . . . . . . . . . . .  4

       2.3.  NAT-Keepalive Packet Format  . . . . . . . . . . . . . .  4

   3.  Encapsulation and Decapsulation Procedures . . . . . . . . . .  5

       3.1.  Auxiliary Procedures . . . . . . . . . . . . . . . . . .  5

             3.1.1.  Tunnel Mode Decapsulation NA...