I-D Action: draft-mglt-ipsecme-clone-ike-sa-03.txt
internet-drafts@ietf.org Mon, 19 January 2015 12:45 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietfa.amsl.com
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A28F81B2A4C for <i-d-announce@ietfa.amsl.com>; Mon, 19 Jan 2015 04:45:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uh9cjjZe6YRN for <i-d-announce@ietfa.amsl.com>; Mon, 19 Jan 2015 04:45:34 -0800 (PST)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 5F1861B2A18 for <i-d-announce@ietf.org>; Mon, 19 Jan 2015 04:45:34 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-mglt-ipsecme-clone-ike-sa-03.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 5.10.0.p8
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150119124534.6090.71020.idtracker@ietfa.amsl.com>
Date: Mon, 19 Jan 2015 04:45:34 -0800
Archived-At: <http://mailarchive.ietf.org/arch/msg/i-d-announce/F2-A6mlt6nO2oC0vLayv5uKhVMI>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: internet-drafts@ietf.org
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Jan 2015 12:45:35 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Clone IKE SA Extension
Authors : Daniel Migault
Valery Smyslov
Filename : draft-mglt-ipsecme-clone-ike-sa-03.txt
Pages : 15
Date : 2015-01-19
Abstract:
This document considers a VPN End User setting a VPN with a security
gateway where at least one of the peers has multiple interfaces.
With the current IKEv2 protocol, the outer IP addresses of the VPN
are determined by those used by IKEv2 SA. As a result using multiple
interfaces requires to set up an IKEv2 SA on each interface, or on
each paths if both the VPN Client and the security gateway have
multiple interfaces. Setting each IKEv2 SA involves authentications
which might require multiple round trips as well as activity from the
VPN User and thus would delay the VPN establishment. In addition
multiple authentications unnecessarily increase the load on the VPN
client and the authentication infrastructure.
This document presents the Clone IKE SA extension, where an
additional IKEv2 SA is derived from an existing IKEv2 SA. The newly
created IKEv2 SA is set without the IKEv2 authentication exchange.
The newly created IKEv2 SA can later be assigned to another interface
using MOBIKE protocol.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-mglt-ipsecme-clone-ike-sa/
There's also a htmlized version available at:
http://tools.ietf.org/html/draft-mglt-ipsecme-clone-ike-sa-03
A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-mglt-ipsecme-clone-ike-sa-03
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
- I-D Action: draft-mglt-ipsecme-clone-ike-sa-03.txt internet-drafts