Re: [EToSat] Integrated VPN/PEP software
Kuhn Nicolas <Nicolas.Kuhn@cnes.fr> Thu, 18 March 2021 07:33 UTC
Return-Path: <Nicolas.Kuhn@cnes.fr>
X-Original-To: etosat@ietfa.amsl.com
Delivered-To: etosat@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D78A33A23A2 for <etosat@ietfa.amsl.com>; Thu, 18 Mar 2021 00:33:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gd3prpfsQ8QT for <etosat@ietfa.amsl.com>; Thu, 18 Mar 2021 00:33:35 -0700 (PDT)
Received: from mx1.cnes.fr (mx1.cnes.fr [194.199.174.200]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 16B703A23A1 for <etosat@ietf.org>; Thu, 18 Mar 2021 00:33:34 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.81,257,1610409600"; d="scan'208";a="25251099"
IronPort-HdrOrdr: A9a23:IQr5WaHgkEO+K8eUpLqF/5HXdLJzesId70hD6mlaTxtJfsuE0/2/hfhz73PJoRsyeFVlo9CPP6GcXWjRnKQf3aA9NaqvNTOIhEKGII1u5oPpwXnBNkTFmNJ1+rxnd8FFaeHYKFhhkILb7WCDc+oI5dmc7eSVgv3DxG1mVgFgZ8hbnmREIyOaCFAzeA5dGZEiHoGd7cYCnjy7ZB0sH6aGL10ke8SGmNHRjpLhZnc9dnsawS2Dlymh5rK/MxXw5GZ7bxp32rsp/WXIlAb0j5/T1M2T8RPX22/N45k+orKI9vJ5CNWImowpLFzX+2CVTb58UL6Pti1dmoySwWst+eOnnz4Qe+5o4zf6eGWtpBPs3BT7uQxekkPK+Bu9iXvnrdeRfkNDN+NxwaZQch7Y7A4LtNVk2KJE2AuixuFqJCKFuCz84tjOEztulkayvBMZ4JQupk0aS4sULL9dxLZvgX9oLA==
X-IPAS-Result: A2E7ITh3AVNg/wIBeAo+HBZzB4FLgwoVVmsKDoQqkUmaXxOBRyELAQEBAQEBAQEBDgIDDhIHAQIEAQEDAQKBDkeCdQIXVoEMASU7Aw0CEAEBAQUBAQEBAQYCAQECAoZODYNHDlYBAQEBAQEBAQECAQEBIgIBAQEBAQEBAQEBAQEBAQEBAQEBFgIUUmACAQMjEVUCAQUDDQ0CBiACAgIwFRACBAESCIJpgwcPP6stgTIaiigGgQ8rgWSFGoZEgk6BVIJYPoJgAwEWgQkEIhqDFDWCKwSDBH1YMgczgQGUIaYZB4FggSeDOYYZihuJAYEughSKY4VvA5AQlHiLVZF6hzoBgWczGieDNRI+FwKOPRGEAIQmO4VFRC8CATUCBgEJAQEDCXQIjioBgQ4BAQ
From: Kuhn Nicolas <Nicolas.Kuhn@cnes.fr>
To: 'Joerg Deutschmann' <joerg.deutschmann@fau.de>, "etosat@ietf.org" <etosat@ietf.org>
Thread-Topic: [EToSat] Integrated VPN/PEP software
Thread-Index: AQHXG2xINMTR1Vv0n0SVOxfvII+h+aqJWNLQ
Date: Thu, 18 Mar 2021 07:33:22 +0000
Message-ID: <F3B0A07CFD358240926B78A680E166FF29ED55B0@TW-MBX-P03.cnesnet.ad.cnes.fr>
References: <974cd7a2-e006-5ef3-1108-ece07f3ad19f@fau.de>
In-Reply-To: <974cd7a2-e006-5ef3-1108-ece07f3ad19f@fau.de>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-tm-as-product-ver: SMEX-12.5.0.1300-8.6.1012-26036.006
x-tm-as-result: No-15.622000-8.000000-10
x-tmase-matchedrid: EMyCvCfVN1HAIiGVQCd+FhvgzEPRJaDEKQNhMboqZloTiSW9r3PknJrJ z77RO+7jgpUOWoMG2sW2oHk7xDpTWcjZGpIBeHfePwKTD1v8YV5lRzZAkKRGDV70lsqJNmceKr9 PXEY309Ehl++FH+OVb33y5OTvNwV7UaQ8U8HgIwnm/8o/yf2EHBAAyIRxuDKjl7ish7ki03zNPV KmLWllyspMSeVqMmSrJ3Ki4l5vGO+cxLIrSuv+9jSq0fWyMPeVcEqLwSM0NpStYjW9XGZ0vMsgx NRUdo4St6XT0ISJ/P1RircD728AmwIzyP7PSLyPTT9ZveSPAxUZSo6PM4LsijhdESD0qLXTJYaw 9XaZdfxSP/0uaR3NppeO+K8D4+JMQhiIAmWS9E3Xuien/kx7uWRt0giz+0LSXjbObVmL4wlu6iw h+4InbeD5CIcLwXN6DY0UDAg1UMkFYukDki7pWOAEAm6C6aBgfn8W1wVq/TK3CLdtdG1oCNF8e0 i2JFlZIRpGywqu9xeNWBLtIwCMS+g1Yi0AsApPt2Xki9xRRxN9LQinZ4QefNZE3xJMmmXc+gtHj 7OwNO2FR9Hau8GO7qfDnZdVcKQklExlQIQeRG0=
x-tm-as-user-approved-sender: Yes
x-tm-as-user-blocked-sender: No
x-tmase-result: 10--15.622000-8.000000
x-tmase-version: SMEX-12.5.0.1300-8.6.1012-26036.006
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/etosat/zOpgOyBQZoR6cWekPoRviEtpyOM>
Subject: Re: [EToSat] Integrated VPN/PEP software
X-BeenThere: etosat@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "The EToSat list is a non-WG mailing list used to discuss performance implications of running encrypted transports such as QUIC over satellite." <etosat.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/etosat>, <mailto:etosat-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/etosat/>
List-Post: <mailto:etosat@ietf.org>
List-Help: <mailto:etosat-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/etosat>, <mailto:etosat-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Mar 2021 07:33:38 -0000
Dear Joerg, We are currently running experiments using VPN and PEP. Our current approach is to combine PEPSal [https://wiki.net4sat.org/doku.php?id=pepsal:index] and OpenVPN [https://openvpn.net/]. We propose an experimental open-source orchestrator, OpenBACH, to run all our tests [https://wiki.net4sat.org/doku.php?id=openbach:index]. It can currently be used to orchestrate the tests you are describing using PEPSal [https://wiki.net4sat.org/doku.php?id=openbach:exploitation:jobs:pep_1.1] and OpenVPN [https://wiki.net4sat.org/doku.php?id=openbach:exploitation:jobs:openvpn_1.0]. An example on how to use OpenBACH on a simple platform can be found here : https://forge.net4sat.org/kuhnn/openbach-example-4-agent Let me know if you are interested in having more information. Cheers, Nicolas -----Message d'origine----- De : EToSat <etosat-bounces@ietf.org> De la part de Joerg Deutschmann Envoyé : mercredi 17 mars 2021 21:29 À : etosat@ietf.org Objet : [EToSat] Integrated VPN/PEP software Dear all, with the increased demand for home office, the problem of VPNs and the non-applicability of geostationary satellite PEPs has shown up more frequently. Can you give me some hints regarding software and/or tutorials which combines VPN client/server and "user-provided" PEPs? As illustrated by "C" here: https://www7content.cs.fau.de/~deutschmann/Figure-VPN-PEP.png Please mention open source as well as proprietary software (although the former is preferred). Pointers to papers are also highly appreciated. Thanks and best regards, Joerg -- Computer Science, Chair for Computer Networks and Communication Systems Universität Erlangen-Nürnberg Martensstr. 3, D-91058 Erlangen, Germany e-mail: joerg.deutschmann@fau.de
- [EToSat] Integrated VPN/PEP software Joerg Deutschmann
- Re: [EToSat] Integrated VPN/PEP software Kuhn Nicolas
- Re: [EToSat] Integrated VPN/PEP software Joerg Deutschmann
- Re: [EToSat] Integrated VPN/PEP software Su, Chi-Jiun