Re: [Hipsec] BEET discussions
Robert Moskowitz <rgm@htt-consult.com> Wed, 26 November 2008 12:49 UTC
Return-Path: <hipsec-bounces@ietf.org>
X-Original-To: hip-archive@lists.ietf.org
Delivered-To: ietfarch-hip-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9081328C16F; Wed, 26 Nov 2008 04:49:54 -0800 (PST)
X-Original-To: hipsec@core3.amsl.com
Delivered-To: hipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3180F28C16F for <hipsec@core3.amsl.com>; Wed, 26 Nov 2008 04:49:53 -0800 (PST)
X-Quarantine-ID: <dCzqZsrtBBZI>
X-Virus-Scanned: amavisd-new at amsl.com
X-Amavis-Alert: BAD HEADER, Duplicate header field: "References"
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dCzqZsrtBBZI for <hipsec@core3.amsl.com>; Wed, 26 Nov 2008 04:49:52 -0800 (PST)
Received: from z9m9z.htt-consult.com (z9m9z.htt-consult.com [208.83.67.147]) by core3.amsl.com (Postfix) with ESMTP id E9D163A6817 for <hipsec@ietf.org>; Wed, 26 Nov 2008 04:49:49 -0800 (PST)
Received: from z9m9z.htt-consult.com (localhost.localdomain [127.0.0.1]) by z9m9z.htt-consult.com (8.13.8/8.13.8) with ESMTP id mAQCmw6F029623 for <hipsec@ietf.org>; Wed, 26 Nov 2008 07:49:06 -0500
Received: from nc2400.htt-consult.com (onlo.htt-consult.com [208.83.67.148]) by z9m9z.htt-consult.com (Scalix SMTP Relay 11.3.0.11339) via ESMTP; Wed, 26 Nov 2008 07:48:55 -0500 (EST)
Date: Wed, 26 Nov 2008 07:49:15 -0500
From: Robert Moskowitz <rgm@htt-consult.com>
To: hipsec@ietf.org
Message-ID: <492D45CB.9080308@htt-consult.com>
In-Reply-To: <492C76DC.6060806@htt-consult.com>
References: <492C1907.1040908@htt-consult.com>
References: <492C76DC.6060806@htt-consult.com>
x-scalix-Hops: 1
User-Agent: Thunderbird 2.0.0.18 (X11/20081120)
MIME-Version: 1.0
Content-Disposition: inline
Subject: Re: [Hipsec] BEET discussions
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: hipsec-bounces@ietf.org
Errors-To: hipsec-bounces@ietf.org
Robert Moskowitz wrote: > Pekka Nikander wrote: >> BEET mode was discussed in its early dais, and was basically rejected >> by the IPsec folks (mainly Steve K) then, mainly due to not being any >> "need" for it, or just not wanting even to consider a new mode to >> IPsec. Then some people claimed that it would be better to simply >> used inner header compression instead. > I have gotten a few emails asking for where the current draft is: http://www.ietf.org/internet-drafts/draft-nikander-esp-beet-mode-09.txt > So then it is valuable to capture in the draft a comparison of BEET to > Tunnel with header compression? > > The 'need' can be clearer. I am almost thinking of a WHY? section after > the introduction. It would restate things covered elsewhere, but it > would draw a reader in and present the case for BEET compared to > transport and wrapping the SA with internal address semantics or tunnel > with internal header compression, and both with zeroing out the outer > addresses to gain outer address independence. (I suspect there is more, > but to me these seem to be the 'high' points). > >> >> --Pekka >> >> On 25 Nov 2008, at 17:25, Robert Moskowitz wrote: >> >>> Has BEET mode been discussed outside of the HIP list? >>> >>> In my work last week to get HIP moving to Standards track, it became >>> clear that BEET ESP will be a part of this and it will need to be >>> reviewed by IPsec-centric people. Tim Polk already had Sheila >>> Frankel looking at it, and Paul Hoffman acknowledged that he would >>> also have to review it. >>> >>> One thing that became evident is that the why of BEET mode is needed >>> to be clearly stated. For example I am missing the explaination that >>> in BEET mode, the SA survives changes to the outer IP addresses. >>> >>> Also the semantics are related to tunnel mode with a nod to tranport >>> mode. >>> >>> I am still trying to get a feel for the ID. It still feels like the >>> placement of BEET mode with respect to the other modes is defused >>> over the document and not well delineated in the beginning. Not only >>> what BEET adds, but what problems occur when you try to do BEET >>> semantics with tunnel or transport instead. >>> >>> I do want to say that I applaud the efforts that went into creating >>> BEET mode, developing the current draft, and getting it into the >>> 2.6.27 kernel (of course I want it in the 2.6.18 kernel as well >>> without patching....). >>> >>> >>> _______________________________________________ >>> Hipsec mailing list >>> Hipsec@ietf.org >>> https://www.ietf.org/mailman/listinfo/hipsec >>> >> >> > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > _______________________________________________ Hipsec mailing list Hipsec@ietf.org https://www.ietf.org/mailman/listinfo/hipsec
- [Hipsec] BEET discussions Robert Moskowitz
- Re: [Hipsec] BEET discussions Pekka Nikander
- Re: [Hipsec] BEET discussions Miika Komu
- Re: [Hipsec] BEET discussions Robert Moskowitz
- Re: [Hipsec] BEET discussions Robert Moskowitz
- Re: [Hipsec] BEET discussions Robert Moskowitz