Re: [Anima] Is this how BRSKI/IPIP works?
Eliot Lear <lear@cisco.com> Fri, 14 July 2017 06:13 UTC
Return-Path: <lear@cisco.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECF921317DF for <anima@ietfa.amsl.com>; Thu, 13 Jul 2017 23:13:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.503
X-Spam-Level:
X-Spam-Status: No, score=-14.503 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JjpL_vHnJTRu for <anima@ietfa.amsl.com>; Thu, 13 Jul 2017 23:13:32 -0700 (PDT)
Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE0AF12EC02 for <anima@ietf.org>; Thu, 13 Jul 2017 23:13:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2625; q=dns/txt; s=iport; t=1500012811; x=1501222411; h=subject:to:cc:references:from:message-id:date: mime-version:in-reply-to; bh=pVuulkKHdJfh3KThOZP/aMqPiXbYiYwCYAWqihgzuC8=; b=MA+p/Tc2PaTIDt+LKUbHnjHH69Lfjci2PvOHpdc+DnmWzHnfz7K+LK7r KZISZ2hdBJd/PLPnDey3iKaiBPGRsmOuAsjwoWCjRj1iv/dFduTnGXF9U SnkpB/ZgMF4F4Ti6VP+ZEVdtTklC7zx857K1WWlxHYCA5BVY6a9kMK0Wy I=;
X-Files: signature.asc : 481
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DjAABNYGhZ/xbLJq1dGgEBAQECAQEBAQgBAQEBk11zkGUilgSCEQeFbwKEKxgBAgEBAQEBAQFrKIUZAQUjVhALGCoCAlcGAQwIAQGKK68jgiaLHwEBAQEBAQEBAQEBAQEBAQEBAREPgyiFLisLgm6HfYJhBZ8xhCyCHY1LiyyHAJVVHziBCjEhCBsVh2E+iQYBAQE
X-IronPort-AV: E=Sophos;i="5.40,357,1496102400"; d="asc'?scan'208";a="653234756"
Received: from aer-iport-nat.cisco.com (HELO aer-core-4.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 14 Jul 2017 06:13:27 +0000
Received: from [10.61.242.235] ([10.61.242.235]) by aer-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id v6E6DRUf002265; Fri, 14 Jul 2017 06:13:27 GMT
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, Toerless Eckert <tte@cs.fau.de>
Cc: Anima WG <anima@ietf.org>
References: <467b3a9b-6fe0-c01f-6165-18e6e290a28c@gmail.com> <20170706033719.GF14122@faui40p.informatik.uni-erlangen.de> <827f69e7-4730-7bd2-c0ac-987e94adc61d@gmail.com> <20170706070938.GG14122@faui40p.informatik.uni-erlangen.de> <c885cdc9-0ec9-98fd-858d-07c66bb84e25@cisco.com> <d3838e7a-380c-f6cd-45e1-ca718073a25e@gmail.com>
From: Eliot Lear <lear@cisco.com>
Message-ID: <0a15cb9d-b1a8-9627-1426-78999ea2456c@cisco.com>
Date: Fri, 14 Jul 2017 08:13:27 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <d3838e7a-380c-f6cd-45e1-ca718073a25e@gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="nco6g47WKwSf0KbLBncOmHJpD7MDqrFQ1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/aD7RCNLZ_nSsMzTsxuCcwu3OXxM>
Subject: Re: [Anima] Is this how BRSKI/IPIP works?
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Jul 2017 06:13:33 -0000
Hi Brian, On 7/14/17 12:41 AM, Brian E Carpenter wrote: > > That may be true, but for BRSKI as such, the only hard requirement is > an address that is unique on a given link, which is a requirement anyway. > IPIP is more of an issue for the node providing the proxy, which is > hopefully a bit upscale from a light switch. > I made my comment in the context of a possible interface collision in your diagram. Those had to do with the autonomic nodes, not the proxies, as I understand things. To avoid those sorts of collisions, it seems like using the h/w address remains sensible. A collision in those circumstances would be extremely unlikely, whereas relying on poor PRNG almost assures it of happening. These devices are likely to have very little entropy available to them. Eliot
- [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Eliot Lear
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Eliot Lear
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Eliot Lear
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Eliot Lear
- Re: [Anima] Is this how BRSKI/IPIP works? Brian E Carpenter
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Eliot Lear (elear)
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Michael Richardson
- Re: [Anima] Is this how BRSKI/IPIP works? Toerless Eckert
- Re: [Anima] Is this how BRSKI/IPIP works? Max Pritikin (pritikin)