[bess] FW: New Version Notification for draft-rosen-bess-secure-l3vpn-00.txt
Ron Bonica <rbonica@juniper.net> Mon, 11 June 2018 19:55 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 58FA8130EC8 for <bess@ietfa.amsl.com>; Mon, 11 Jun 2018 12:55:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YXXE2mUfz0rs for <bess@ietfa.amsl.com>; Mon, 11 Jun 2018 12:55:34 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ABCF7130EB1 for <bess@ietf.org>; Mon, 11 Jun 2018 12:55:34 -0700 (PDT)
Received: from pps.filterd (m0108157.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w5BJra80014588 for <bess@ietf.org>; Mon, 11 Jun 2018 12:55:34 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=Avl6NtMRZsYXZ7NHJNnbknBsEvs9dEKLsGhXv79u/uA=; b=NuTGRMAsAjiQAN7L/rr8OKLyW/4YbJ4qapqdKVfzXMpasfk/BDhn/PtQv70L2R9vyi8M 2rc3ss1g9vIjs8MPX/uI+AoWmVR7i0V2AgVvJdAtVc+AU84/4x+nqZhY9+l2nLO2pQP7 SlwxcePGI/xlmpxwNj7m0WKdKXA7oL6YXLL4REvP4gcfNfa/F/jgNhnLZkQqadEQvmm+ Eg+KGmHLEgrgxIikmRWHRq7uG5eCcniF3uMHkddgX/YOzXrDdgVE5Ympdf0X9kgIQYEz /hGW3XXsBg4Dm6mltkkm49FB3WnwlRcqK5eFesd5THvAX/iTET8acwWEqGFh5escd67A kw==
Received: from nam01-sn1-obe.outbound.protection.outlook.com (mail-sn1nam01lp0118.outbound.protection.outlook.com [207.46.163.118]) by mx0a-00273201.pphosted.com with ESMTP id 2jhv77rc94-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <bess@ietf.org>; Mon, 11 Jun 2018 12:55:34 -0700
Received: from CO1PR05MB443.namprd05.prod.outlook.com (10.141.73.152) by CO1PR05MB538.namprd05.prod.outlook.com (10.141.73.24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.863.6; Mon, 11 Jun 2018 19:55:31 +0000
Received: from CO1PR05MB443.namprd05.prod.outlook.com ([fe80::312a:3c1:f69:c7fb]) by CO1PR05MB443.namprd05.prod.outlook.com ([fe80::312a:3c1:f69:c7fb%13]) with mapi id 15.20.0863.010; Mon, 11 Jun 2018 19:55:31 +0000
From: Ron Bonica <rbonica@juniper.net>
To: "bess@ietf.org" <bess@ietf.org>
Thread-Topic: New Version Notification for draft-rosen-bess-secure-l3vpn-00.txt
Thread-Index: AQHUAb0/C+i0io0nekOi/XAFLuZhe6RbeAcw
Date: Mon, 11 Jun 2018 19:55:31 +0000
Message-ID: <CO1PR05MB443FF492ECE04553EF9E17BAE780@CO1PR05MB443.namprd05.prod.outlook.com>
References: <152874653557.2807.17161289464973121006.idtracker@ietfa.amsl.com>
In-Reply-To: <152874653557.2807.17161289464973121006.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.0.300.84
dlp-reaction: no-action
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; CO1PR05MB538; 7:l/VujSVPlQ5dqByjq6VdOVzd4cAzg4+P61uEBRCOKoLvlcfHasRROthj5ek7I7anwF2p3vjQ06HojWeqRljeI7U92InlpusoEe4V0a0tXUshItEp796BN0ef3nMvOlgqbzFx0jl8TMVsmly82g7SXNokEmZRYfTQlQVeC+oKwxCeXcHbs3ATcptsPVrayl7MLeNnAEHb4thwNnFvdGsfUunDzFnQs/PTW/HY+p+S7ReS8yI6optpW0ct8u0Ym7iI
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:CO1PR05MB538;
x-ms-traffictypediagnostic: CO1PR05MB538:
x-microsoft-antispam-prvs: <CO1PR05MB53828DB72B0A657B3C9993DAE780@CO1PR05MB538.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(192374486261705)(138986009662008)(21532816269658);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3231254)(944501410)(52105095)(3002001)(93006095)(93001095)(10201501046)(6055026)(149027)(150027)(6041310)(20161123558120)(20161123564045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(6072148)(201708071742011)(7699016); SRVR:CO1PR05MB538; BCL:0; PCL:0; RULEID:; SRVR:CO1PR05MB538;
x-forefront-prvs: 070092A9D3
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(979002)(39380400002)(396003)(39860400002)(376002)(366004)(346002)(13464003)(199004)(189003)(33656002)(3280700002)(2906002)(2501003)(5250100002)(3660700001)(105586002)(476003)(25786009)(966005)(68736007)(478600001)(5890100001)(14454004)(15650500001)(6306002)(6436002)(9686003)(2351001)(5660300001)(8676002)(1730700003)(81156014)(81166006)(2473003)(3846002)(5640700003)(6116002)(8936002)(229853002)(74316002)(305945005)(7736002)(55016002)(106356001)(2900100001)(53546011)(316002)(6916009)(59450400001)(6506007)(99286004)(66066001)(486006)(86362001)(76176011)(7696005)(26005)(446003)(97736004)(53936002)(11346002)(102836004)(186003)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1102; SCL:1; SRVR:CO1PR05MB538; H:CO1PR05MB443.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 1pmqIxW4alGAqxwjAN9YDhjs92owxhyaHjaEnRu+RtpvWg16R5M3Le0HMkd6TjrrU9WZdrOLVvO2Z4v9WctqQ8fAqFvOigUTdT9m/GOrT+43FSf3dlJpiCv7IwqQlhHwA88zsG3sFc8J9vrPVbBZnYTDKyeXst0nxGeFonozAA1Z1ifUHVpy05du6E8mawva
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 85e74954-cbb6-468b-1566-08d5cfd549f2
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 85e74954-cbb6-468b-1566-08d5cfd549f2
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jun 2018 19:55:31.7597 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CO1PR05MB538
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-06-11_09:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1805220000 definitions=main-1806110224
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/V79-XfqlMo7u75E1fndZbjv3Ulo>
Subject: [bess] FW: New Version Notification for draft-rosen-bess-secure-l3vpn-00.txt
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jun 2018 19:55:38 -0000
Folks, Please review and comment on this draft. Ron -----Original Message----- From: internet-drafts@ietf.org <internet-drafts@ietf.org> Sent: Monday, June 11, 2018 3:49 PM To: Ron Bonica <rbonica@juniper.net>; Eric Rosen <erosen@juniper.net>; Eric Rosen <erosen@juniper.net> Subject: New Version Notification for draft-rosen-bess-secure-l3vpn-00.txt A new version of I-D, draft-rosen-bess-secure-l3vpn-00.txt has been successfully submitted by Eric C. Rosen and posted to the IETF repository. Name: draft-rosen-bess-secure-l3vpn Revision: 00 Title: Augmenting RFC 4364 Technology to Provide Secure Layer L3VPNs over Public Infrastructure Document date: 2018-06-11 Group: Individual Submission Pages: 19 URL: https://tools.ietf.org/html/draft-rosen-bess-secure-l3vpn-00 Status: https://datatracker.ietf.org/doc/draft-rosen-bess-secure-l3vpn/ Htmlized: https://tools.ietf.org/html/draft-rosen-bess-secure-l3vpn-00 Htmlized: https://datatracker.ietf.org/doc/html/draft-rosen-bess-secure-l3vpn Abstract: The Layer 3 Virtual Private Network (VPN) technology described in RFC 4364 is focused on the scenario in which a network Service Provider (SP) maintains a secure backbone network and offers VPN service over that network to its customers. Customers access the SP's network by attaching "Customer Edge" (CE) routers to "Provider Edge" (PE) routers, and exchanging cleartext IP packets. PE routers generally serve multiple customers, and prevent unauthorized communication among customers. Customer data sent across the backbone (from one PE to another) is encapsulated in MPLS, using an MPLS label to associate a given packet with a given customer. The labeled packets are then sent across the backbone network in the clear, using MPLS transport. However, many customers want a VPN service that is secure enough to run over the public Internet, and which does not require them to send cleartext IP packets to a service provider. Often they want to connect directly to edge nodes of the public Internet, which does not provide MPLS support. Each customer may itself have multiple tenants who are not allowed to intercommunicate with each other freely. In this case, the customer many need to provide a VPN service for the tenants. This document describes a way in which this can be achieved using the technology of RFC 4364. The functionality assigned therein to a PE router can be placed instead in Customer Premises Equipment. This functionality can be augmented by transmitting MPLS packets through IPsec Security Associations. The BGP control plane sessions can also be protected by IPsec. This allows a customer to use RFC 4364 technology to provide VPN service to its internal departments, while sending only IPsec-protected packets to the Internet or other backbone network, and eliminating the need for MPLS transport in the backbone. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
- Re: [bess] New Version Notification for draft-ros… stephane.litkowski
- Re: [bess] New Version Notification for draft-ros… Ron Bonica
- Re: [bess] New Version Notification for draft-ros… Robert Raszuk
- Re: [bess] New Version Notification for draft-ros… stephane.litkowski
- Re: [bess] New Version Notification for draft-ros… Robert Raszuk
- Re: [bess] New Version Notification for draft-ros… stephane.litkowski
- [bess] FW: New Version Notification for draft-ros… Ron Bonica