[IPsec] Mesh VPN I-D (temporary name) - new author
Hi everybody, Vishwas Manral has agreed to join Steve Hanna as co-author of this draft, now at -00 ( http://tools.ietf.org/html/draft-ietf-ipsecme-p2p-vpn-problem-00). I'd like to thank them both. While Vishwas and Steve are busy working on the next version, feel free to read and comment on the current version. Regards, Yaron ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
Re: [IPsec] New Version Notification for draft-nir-ipsecme-erx-03.txt
Hi, all > So if any of you are interested, and are willing to review, please let us > know. I would like to review this draft. Cheers, Yang == Yang Cui, Ph.D. Huawei Technologies cuiy...@huawei.com > -邮件原件- > 发件人: ipsec-boun...@ietf.org [mailto:ipsec-boun...@ietf.org] 代表 Yoav > Nir > 发送时间: 2012年5月3日 3:33 > 收件人: IPsecme WG > 抄送: ho...@ietf.org > 主题: Re: [IPsec] New Version Notification for draft-nir-ipsecme-erx-03.txt > > Hi again. > > The response has so far been underwhelming. As I said in my previous > message, I'm perfectly willing to go the individual route, but I think this > would > be a shame. The protocol extension described can have applications in both > remote access VPN (opening multiple tunnels with multiple gateways) and in > seamless roaming between remote access VPN and local area wireless > networks. > > I also think that it touches a lot of different areas, and would benefit from > the input of people better versed than me in the needs of cellular providers > and AAA. > > I am CC-ing the HOKEY mailing list (as I should have done earlier) because > this > draft actually adapts IKE to work with their protocol, and they may be willing > to review and contribute, even if this is IPsecME work. > > So if any of you are interested, and are willing to review, please let us > know. > > Yoav & Qin > > On Apr 12, 2012, at 10:31 PM, Paul Hoffman wrote: > > > On Apr 12, 2012, at 11:17 AM, Yoav Nir wrote: > > > >> We would like this working group to accept this, and have it added to > charter. Of course, if it gets accepted, we volunteer to be authors. If it is > not > accepted, we will try to progress it as an individual submission, but we > believe that this changes IKE enough that it should come from the working > group. > > > > > > Statements of interest and disinterest on this document are welcome. If > you prefer to make such a statement off-list please send it to me or Yaron. > > > > A statement of interest that include a promise to review in WG LC count for > more than a bare statement of interest. > > > ___ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
Re: [IPsec] New VersionNotification for draft-nir-ipsecme-erx-03.txt
+1 I support this work and would love to see this document progress fast. Regards! -Qin - Original Message - From: "Tero Kivinen" To: "Yoav Nir" Cc: "IPsecme WG" ; Sent: Friday, May 04, 2012 8:16 PM Subject: Re: [IPsec] New VersionNotification for draft-nir-ipsecme-erx-03.txt > Yoav Nir writes: >> So if any of you are interested, and are willing to review, please >> let us know. > > I am willing to review. > -- > kivi...@iki.fi > ___ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
Re: [IPsec] Mesh VPN I-D (temporary name) - new author
On Tue, May 08, 2012 at 10:46:24PM +0300, Yaron Sheffer wrote: > While Vishwas and Steve are busy working on the next version, feel > free to read and comment on the current version. In what way is this "problem" not addressed by transport mode, despite it's being "far less commonly deployed?" But more generally speaking, what exactly is this document attempting to accomplish in is present form? -- . ___ ___ . . ___ . \/ |\ |\ \ . _\_ /__ |-\ |-\ \__ ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
Re: [IPsec] Mesh VPN I-D (temporary name) - new author
On 05/08/12 22:17, Izaac wrote: On Tue, May 08, 2012 at 10:46:24PM +0300, Yaron Sheffer wrote: While Vishwas and Steve are busy working on the next version, feel free to read and comment on the current version. In what way is this "problem" not addressed by transport mode, despite it's being "far less commonly deployed?" But more generally speaking, what exactly is this document attempting to accomplish in is present form? I agree with Izaac. Furthermore, a lot of the language in the draft is confusing (at least to me). You talk about point-to-point tunnel creation, but many of your use cases involve VPNs. Your use cases mostly describe configurations that are already solved today using existing transport mode IPsec (2.1) and VPN configurations (2.2 and 2.3). The idea of connecting to the VPN (section 2.3) gateway closest to a particular destination seems unworkable. It would be more reasonable, and probably more useful, for a client to automatically locate the nearest VPN server to itself (that alone would be an interesting and potentially useful problem). I think you need to narrow down the scope of the problem statement, and provide more careful analysis of why current methods are inadequate, before this draft is going to get you much useful feedback. As a side note, in general, the challenge in constructing large IPsec configurations across multiple administrative domains is getting the "trust relationship" in place to begin with, not the configuration of IPsec and key management policy. -John ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
Re: [IPsec] [HOKEY] New VersionNotification for draft-nir-ipsecme-erx-03.txt
+1 Willing to see this work progress. Thanks, Zhen On Wed, May 9, 2012 at 9:56 AM, Qin Wu wrote: > +1 > I support this work and would love to see this document progress fast. > > Regards! > -Qin > - Original Message - > From: "Tero Kivinen" > To: "Yoav Nir" > Cc: "IPsecme WG" ; > Sent: Friday, May 04, 2012 8:16 PM > Subject: Re: [IPsec] New VersionNotification for draft-nir-ipsecme-erx-03.txt > > >> Yoav Nir writes: >>> So if any of you are interested, and are willing to review, please >>> let us know. >> >> I am willing to review. >> -- >> kivi...@iki.fi >> ___ >> IPsec mailing list >> IPsec@ietf.org >> https://www.ietf.org/mailman/listinfo/ipsec > ___ > HOKEY mailing list > ho...@ietf.org > https://www.ietf.org/mailman/listinfo/hokey -- Best regards, Zhen ___ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec
