[dhcwg] dhcpv6-24: using IPsec to secure relay-agent <-> server messages

Thomas Narten <narten@us.ibm.com> Wed, 08 May 2002 15:12 UTC

Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA11638 for <dhcwg-archive@odin.ietf.org>; Wed, 8 May 2002 11:12:52 -0400 (EDT)
Received: (from daemon@localhost) by optimus.ietf.org (8.9.1a/8.9.1) id LAA05013 for dhcwg-archive@odin.ietf.org; Wed, 8 May 2002 11:13:01 -0400 (EDT)
Received: from optimus.ietf.org (localhost [127.0.0.1]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id LAA04722; Wed, 8 May 2002 11:11:31 -0400 (EDT)
Received: from ietf.org (odin [132.151.1.176]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id LAA04697 for <dhcwg@optimus.ietf.org>; Wed, 8 May 2002 11:11:30 -0400 (EDT)
Received: from e21.nc.us.ibm.com (e21.nc.us.ibm.com [32.97.136.227]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA11474 for <dhcwg@ietf.org>; Wed, 8 May 2002 11:11:21 -0400 (EDT)
Received: from southrelay02.raleigh.ibm.com (southrelay02.raleigh.us.ibm.com [9.37.3.209]) by e21.nc.us.ibm.com (8.12.2/8.12.2) with ESMTP id g48FBT64069090 for <dhcwg@ietf.org>; Wed, 8 May 2002 11:11:29 -0400
Received: from rotala.raleigh.ibm.com (rotala.raleigh.ibm.com [9.27.9.21]) by southrelay02.raleigh.ibm.com (8.11.1m3/NCO/VER6.1) with ESMTP id g48FBTQ119356 for <dhcwg@ietf.org>; Wed, 8 May 2002 11:11:29 -0400
Received: from rotala.raleigh.ibm.com (narten@localhost) by rotala.raleigh.ibm.com (8.11.6/8.11.6) with ESMTP id g48FBrn19319 for <dhcwg@ietf.org>; Wed, 8 May 2002 11:11:53 -0400
Message-Id: <200205081511.g48FBrn19319@rotala.raleigh.ibm.com>
To: dhcwg@ietf.org
Date: Wed, 08 May 2002 11:11:53 -0400
From: Thomas Narten <narten@us.ibm.com>
Subject: [dhcwg] dhcpv6-24: using IPsec to secure relay-agent <-> server messages
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-Mailman-Version: 1.0
Precedence: bulk
List-Id: <dhcwg.ietf.org>
X-BeenThere: dhcwg@ietf.org

> 21.2. Security of messages sent between servers and relay agents
> 
>    Relay agents and servers that choose to exchange messages securely
>    use the IPsec mechanisms for IPv6 [8].  The way in which IPsec
>    is employed by relay agents and servers is not specified in this
>    document.

I suspect that this will not get through the IESG as is. IPsec doesn't
work well with multicast. This is too underspecified.

Thomas

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg