<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><TITLE></TITLE>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.3199" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY text=#000000 bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hi, Folks</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I highlight my major comment about RRTFW
draft</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>In Section 4.1</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>If the firewalls were configured to open UDP
<BR>port 500 for IKE negotiation, why could not they open port 135 for
<BR>mobility header, too? Both sizes of IKE negotiation message and MH
<BR>signal message are small. Then wrapping by UDP encapsulation could <BR>be
avoided.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>So I mean we could just apply UDP encapsulation for
IPSec packets </FONT></DIV>
<DIV><FONT face=Arial size=2>(such as BU for home agent, HoTI/HOT between MN and
HA). For other </FONT></DIV>
<DIV><FONT face=Arial size=2>packets, such as HOTI/HOT between HA and CN,
CoTI/CoT and BU/BA </FONT></DIV>
<DIV><FONT face=Arial size=2>between MN and CN, they are not need
to wrapped by UDP encapsulation. </FONT></DIV>
<DIV><FONT face=Arial size=2>Because they are also small in term of size
and in clear text with special </FONT></DIV>
<DIV><FONT face=Arial size=2>protocol 135, it would not occur serious
security problem.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Regards</FONT></DIV>
<DIV><FONT face=Arial size=2>Qiu Ying</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV></BODY></HTML>
<table><tr><td bgcolor=#ffffff><font color=#000000><pre>------------ Institute For Infocomm Research - Disclaimer -------------This email is confidential and may be privileged. If you are not the intended recipient, please delete it and notify us immediately. Please do not copy or use it for any purpose, or disclose its contents to any other person. Thank you.--------------------------------------------------------</pre></font></td></tr></table>