RFC 3947
E522223
RFC 3947 is an IETF standard that specifies how to detect and negotiate IPsec NAT Traversal (NAT-T) using IKE.
Statements (44)
| Predicate | Object |
|---|---|
| instanceOf | IETF Request for Comments ⓘ |
| appliesTo | IPv4 networks with NAT ⓘ |
| area | Security ⓘ |
| category | Standards Track ⓘ |
| complements | RFC 3948 ⓘ |
| defines |
NAT-Discovery (NAT-D) payloads in IKE
ⓘ
NAT-Traversal (NAT-T) capability negotiation in IKE ⓘ hash-based NAT discovery method in IKE ⓘ mechanism to detect presence of NAT between IPsec peers ⓘ mechanism to negotiate use of NAT traversal for IPsec ⓘ vendor-independent NAT traversal negotiation ⓘ |
| documentType | Standards Track RFC ⓘ |
| focusesOn | operation of IPsec across Network Address Translators ⓘ |
| hasIdentifier | RFC 3947 ⓘ |
| intendedProtocol |
IKE
NERFINISHED
ⓘ
IPsec NERFINISHED ⓘ |
| language | English ⓘ |
| networkLayer | Layer 3 ⓘ |
| obsoletes | RFC 3947 (as an Internet-Draft predecessor) NERFINISHED ⓘ |
| publishedBy |
Internet Engineering Task Force
ⓘ
surface form:
IETF
Internet Engineering Task Force ⓘ |
| publisher | RFC Editor NERFINISHED ⓘ |
| purpose | to enable IPsec to function correctly through NAT devices ⓘ |
| relatedTo |
IKE
NERFINISHED
ⓘ
IKEv1 NERFINISHED ⓘ IPsec NERFINISHED ⓘ Internet Key Exchange NERFINISHED ⓘ NAT Traversal ⓘ NAT-T NERFINISHED ⓘ RFC 3948 NERFINISHED ⓘ |
| scope | IKE Phase 1 and Phase 2 exchanges for NAT-T ⓘ |
| securityDomain |
IPsec VPNs
NERFINISHED
ⓘ
Virtual Private Networks ⓘ |
| securityProperty | preserves IPsec security semantics when traversing NATs ⓘ |
| series | Request for Comments NERFINISHED ⓘ |
| specifies |
IKE payloads and exchanges for NAT detection
ⓘ
IKE payloads and exchanges for NAT-T negotiation ⓘ use of UDP encapsulation for IPsec ESP packets when NAT is detected ⓘ |
| standardizes | NAT traversal negotiation for IPsec using IKE ⓘ |
| status | Proposed Standard ⓘ |
| stream |
Internet Engineering Task Force
ⓘ
surface form:
IETF
|
| title | Negotiation of NAT-Traversal in the IKE ⓘ |
| updates | IPsec NAT traversal behavior for IKEv1 ⓘ |
| usesTransportProtocol | UDP NERFINISHED ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.