Re: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-11.txt

Miika Komu <> Thu, 16 June 2016 11:15 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id DBFA412D135 for <>; Thu, 16 Jun 2016 04:15:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id MbqVLy7qkoTz for <>; Thu, 16 Jun 2016 04:14:59 -0700 (PDT)
Received: from ( []) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 805C212D0F8 for <>; Thu, 16 Jun 2016 04:14:58 -0700 (PDT)
X-AuditID: c1b4fb2d-f79936d0000030e4-5e-57628a302fb1
Received: from (Unknown_Domain []) by (Symantec Mail Security) with SMTP id D9.21.12516.03A82675; Thu, 16 Jun 2016 13:14:56 +0200 (CEST)
Received: from [] ( by ( with Microsoft SMTP Server id; Thu, 16 Jun 2016 13:14:14 +0200
References: <>
From: Miika Komu <>
Organization: Ericsson AB
Message-ID: <>
Date: Thu, 16 Jun 2016 14:14:09 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.8.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms040402070909000603070604"
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrCLMWRmVeSWpSXmKPExsUyM2K7h65BV1K4wd6LqhZTF01mdmD0WLLk J1MAYxSXTUpqTmZZapG+XQJXRuu7DsaCpS4V2+5uYmpgbLHrYuTkkBAwkVhyZh87hC0mceHe erYuRi4OIYEjjBI7vk5hhnBWM0pM+jGZGaRKWMBH4vjO60wgtoiAqMSUD6fB4kICjhIPTh5m BLHZBLQkVt25DhbnF5CU2NCwG8zmFdCUmHurgxXEZhFQlfh/fxZYvahAhMSs7T+YIGoEJU7O fMICYnMKOEm8W7SZCeQIZoFuRomGVY+AHA6gZSoSF48FT2AUmIWkZRayMpAEs4CZxLzND5kh bG2JZQtfQ9nWEjN+HWSDsBUlpnQ/ZIewTSVeH/3ICGEbSyxb95dtASPHKkbR4tTi4tx0I2O9 1KLM5OLi/Dy9vNSSTYzA8D+45bfuDsbVrx0PMQpwMCrx8D44nxguxJpYVlyZe4hRBWjOow2r LzBKseTl56UqifBGtiWFC/GmJFZWpRblxxeV5qQWH2KU5mBREuf1f6kYLiSQnliSmp2aWpBa BJNl4uCUamDsP/R9StANWUGnT/IaCRtsEwVPWz2bzBecbvh2kVN4+Am/bXd494v0H9uWUiDx N6gi98nid8ZHZfSjYjN3663s3nesSGRTVMIa926TU9w74pP0tr9eGOH9lvvIi4TK0nSeI0tV e9yjl76YtqH06zepoGfnf/wV/MQiv8jIe9bxmvZ//3ad2VSvxFKckWioxVxUnAgA8Nz1a4cC AAA=
Archived-At: <>
Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-11.txt
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 16 Jun 2016 11:15:01 -0000


this draft is a major change to the previous version. The high-level 
changes are as follows:

* We got feedback that the earlier version was difficult to read because 
it was a delta to RFC5770. So now many of the things specified in 
RFC5770 are repeated in the document.

* The connectivity checks as specified in the earlier version had some 
problems (SEQ numbers in UPDATE packets are mandatory, address candidate 
activation by sending ESP). So I reworked this, and came up with an 
improved version that is completely based on standard HIP UPDATE packet 

* Mobility handoff procedure is now specified.

* Lots of editorial work throughout the document.

The text is still a bit rough from edges and I should take a look at all 
the comments from the mailing list if the issues are resolved, but 
feedback is always welcome!

On 06/15/2016 08:19 PM, wrote:
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Host Identity Protocol of the IETF.
>          Title           : Native NAT Traversal Mode for the Host Identity Protocol
>          Authors         : Ari Keranen
>                            Jan Melén
>                            Miika Komu
> 	Filename        : draft-ietf-hip-native-nat-traversal-11.txt
> 	Pages           : 46
> 	Date            : 2016-06-15
> Abstract:
>     This document specifies a new Network Address Translator (NAT)
>     traversal mode for the Host Identity Protocol (HIP).  The new mode is
>     based on the Interactive Connectivity Establishment (ICE) methodology
>     and UDP encapsulation of data and signaling traffic.  The main
>     difference from the previously specified modes is the use of HIP
>     messages for all NAT traversal procedures.
> The IETF datatracker status page for this draft is:
> There's also a htmlized version available at:
> A diff from the previous version is available at:
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at
> Internet-Drafts are also available by anonymous FTP at:
> _______________________________________________
> Hipsec mailing list