Hi, Please find a draft we have Posted. They concern the definition of IKEv2 and IPsec contexts. Comments are welcome,
BR, Daniel Palomares Name: draft-plmrs-ipsecme-ipsec-ikev2-context-definition. Revision: 00 Title: IKEv2/IPsec Context Definition Document date: 2014-02-12 Group: Individual Submission Pages: 8 URL: http://www.ietf.org/id/draft-plmrs-ipsecme-ipsec-ikev2-context-definition-00.txt<http://www.ietf.org/internet-drafts/draft-mglt-dice-diet-esp-00.txt> Status: https://datatracker.ietf.org/doc/draft-plmrs-ipsecme-ipsec-ikev2-context-definition/ Htmlized: http://tools.ietf.org/html/draft-plmrs-ipsecme-ipsec-ikev2-context-definition-00 Abstract IPsec/IKEv2 clusters are constituted of multiple nodes accessed via a single address by the end user. The traffic is then split between the nodes via specific IP load balancing policies. Once a session is assigned to a given node, IPsec makes it difficult to assign the session to another node. This makes management operations and transparent high availability for end users difficult to perform within the cluster. This document describes the contexts for IKEv2 and IPsec that MUST be transferred between two nodes so a session can be restored. This makes possible to transfer an IPsec session transparently to the end user. *Daniel* *PALOMARES* *Orange Labs, Issy-les-Moulineaux* +33 6 34 23 07 88
_______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec