Hi. In -00 this section was labeled 9.3. This issue is very much about substance, so we would very much like to see discussion of it. Ultimately it goes to the question of whether and when the methods in 5.1 and 5.2 should be recommended.
Yaron: 10.4: this entire discussion is probably redundant, because when a node fails in the LS cluster, you switch to another node. Implementing QCD on top of this is probably an overkill. If we remove this section, we can get rid of sec. 5.2 as well, and we can focus on a single recommended way to generate the token, which would make analysis that much easier. Yoav: I disagree. Section 10.4 is about an active-standby configuration without synchronization. A failover is the same as a reboot, only faster. Please send comments to the list Yoav _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
