IETF Logo Mail Archive

Re: [I2nsf] IETF 114 I2NSF agenda uploaded

"Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com> Sat, 23 July 2022 20:26 UTC

Return-Path: <jaehoon.paul@gmail.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 32ECAC13C510 for <i2nsf@ietfa.amsl.com>; Sat, 23 Jul 2022 13:26:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.994
X-Spam-Level:
X-Spam-Status: No, score=-6.994 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_HK_NAME_FM_MR_MRS=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F0Wrri2-MD4K for <i2nsf@ietfa.amsl.com>; Sat, 23 Jul 2022 13:26:49 -0700 (PDT)
Received: from mail-io1-xd35.google.com (mail-io1-xd35.google.com [IPv6:2607:f8b0:4864:20::d35]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70610C14F72C for <i2nsf@ietf.org>; Sat, 23 Jul 2022 13:26:49 -0700 (PDT)
Received: by mail-io1-xd35.google.com with SMTP id y197so5115594iof.12 for <i2nsf@ietf.org>; Sat, 23 Jul 2022 13:26:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=WK9EZaxGAoU4NhKZ+jUJfmbrBXAYd35WqYGok13bzy8=; b=V5Z+8NOcZfRR+9jmxXIPpiwV5BtbOVMNbo4OhCFJQGD3JQHr7YUj6wTJDIU9vSySc4 Crx9GSTJLw2a7CzDHWaQFlut7lvZZAunXBUnh6hpzMzfqJz63ESnzgsDucIIPEPUnSYr tShxy7lhxV3Z5y0skMajzEAhC9QwHhTgDbLmQcJgej0EblrBvoxId2RuFcZ8sHUPUWkT kTCB7iVIcHh5sRg7UyJ/uviRhf+7lUrnhcNz7SSthu7k5+kUfCVBiUUdCu+YE4SM6ccw RXHhz/C3JYEZcpho7pzxVtNaiKfv4udgU1lbH5t/Pn2YHFv+1MPsIdK/xXuaePmzK16k dWWQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=WK9EZaxGAoU4NhKZ+jUJfmbrBXAYd35WqYGok13bzy8=; b=N8MstNDFuinURrblXB78crJ3Rka11EgIw+HUxSBD81DZi7y/KnIOxEctF8JNg6ZENq B8reclOBwDu3FReJyqcA9ToZileqdaJwPRenjWbjSOWbH0AyABY3ZgOi1OKVtQhfm+JB 1c8LZ++qaUQHFHFvPMLH46NbO4BcRBFJg8Ln64PinNdIWUnRDijMAc237ojrz5154Bwg 408NmzWHPxC2sMwhtTFqXnLXl429P3yo3wXF4xzU9KmSytYsDRh6xCWuj8eQ1lBwk1cz zBNDH5ZlKVZnSc1OWGZeaJO1/nk+MnGCfgAUvucVZlEU2hnX87V2gFiBL/ptRkiIV6hW 2QvQ==
X-Gm-Message-State: AJIora9pU/7PkzmZJngrNtvoN2RFx1PW/ITjFTMRmknmfzgC6ilkEEiV CgVQsZnKcwcSb6+1wu9oRw5Yug+JbCKtpnlSOURETsfvIzXjCg==
X-Google-Smtp-Source: AGRyM1u3fN6CH4OIh4/YpAwR1PXo9d/wTwlAUXmgt3UqY94y09jFaijOrwawoUzbc23yTZzo+N3AayG0sdY1PHpNy+o=
X-Received: by 2002:a02:3f6e:0:b0:33e:fcaa:ee4a with SMTP id c46-20020a023f6e000000b0033efcaaee4amr2402834jaf.79.1658608008486; Sat, 23 Jul 2022 13:26:48 -0700 (PDT)
MIME-Version: 1.0
References: <CO1PR13MB49205BB48AB81D9BE50E0E77858F9@CO1PR13MB4920.namprd13.prod.outlook.com> <BYAPR08MB4872301332C1854F7DA78AFFB38F9@BYAPR08MB4872.namprd08.prod.outlook.com> <CO1PR13MB4920200D70DC11FBF9DDA04E858F9@CO1PR13MB4920.namprd13.prod.outlook.com> <BYAPR08MB48722EA2CCAD37AC12960FEFB38E9@BYAPR08MB4872.namprd08.prod.outlook.com> <CAPK2Dex2zkoNxr7F9vvbTm6r9OvAmtUcmY=Fd279Xaq_uCWcsA@mail.gmail.com> <4287A07D-E1F4-4C71-B0B1-8A00E290594D@um.es>
In-Reply-To: <4287A07D-E1F4-4C71-B0B1-8A00E290594D@um.es>
From: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Date: Sun, 24 Jul 2022 05:26:15 +0900
Message-ID: <CAPK2Dey_7Gd41y2nthLTAhbr3tsZS-t1pRF0CRvEnrDTV=kw-g@mail.gmail.com>
To: Rafa Marín López <rafa@um.es>
Cc: Susan Hares <shares@ndzh.com>, Linda Dunbar <linda.dunbar@futurewei.com>, "i2nsf@ietf.org" <i2nsf@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>, "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000002ae5f505e47ec561"
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/b5IiDQ-RWkTX6oTMn8WIBegFmu0>
Subject: Re: [I2nsf] IETF 114 I2NSF agenda uploaded
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Jul 2022 20:26:51 -0000

Hi Rafa,
Thanks for your kind clarification and future help.

If we have an online meeting for this topic, I will let you know the access
information for this meeting.

Thanks.

Best Regards,
Paul

On Fri, Jul 22, 2022 at 6:41 PM Rafa Marín López <rafa@um.es> wrote:

> Dear Paul, all:
>
> El 20 jul 2022, a las 17:38, Mr. Jaehoon Paul Jeong <
> jaehoon.paul@gmail.com> escribió:
>
> Hi Sue,
> I have much interest in your proposed item.
>
>
> Yes, we do as well.
>
> I think the following RFC 9061 can be used for the IPsec interface for BGP
> over IPsec.
>
> - RFC 9061: A YANG Data Model for IPsec Flow Protection Based on
> Software-Defined Networking (SDN)
> https://datatracker.ietf.org/doc/html/rfc9061
>
>
> Yes, we agree with this view.
>
>
> We can regard BGP routers as NSFs, and we can run either IKE or IKE-less
> approach in RFC 9061.
>
>
> Correct.
>
> We can also extend the approach in RFC 9061 so that it can accommodate BGP
> message exchanges
> (e.g., AS-PATH and NEXT-HOP attributes).
>
> I will investigate RFC 9061 more to see whether my comments are correct or
> not.
>
>
> Paul, Sue, with a clear list of requirements and needs (i.e. what
> information needs to be configured), we may give precise information about
> how RFC 9061 can help on this and to discover whether this extension is
> needed or not. And , in case it is needed, how to carry out this
> modification.
>
> Best Regards.
>
>
> Thanks.
>
> Best Regards,
> Paul
>
> On Wed, Jul 20, 2022 at 8:55 PM Susan Hares <shares@ndzh.com> wrote:
>
>> Linda:
>>
>>
>>
>> I apologize for being unclear.  We ran into a few problems with trying to
>> complete the BGP Yang model in the area of IPsec links.   BGP runs over TCP
>> over IPsec links in some scenarios.  When creating the modeling, it was
>> unclear which Yang modules were targeted to support this feature.
>>
>>
>>
>> What I need is advice from the I2NSF and the IPSECME on the place to ask
>> for work additions to support BGP peers.
>>
>>
>>
>> The scenario is between two BGP routers. The type of IPsec connections
>> between BGP routers can be:
>>
>>    - within a trusted cloud (same administrative domain, same trust
>>    cloud),
>>    - across a physically secure private link,
>>    - across the open Internet (where attacks happen).
>>
>>
>>
>> The key is we want to configure and monitor the IPsec link.
>>
>>
>>
>> As BGP co-authors looked at this, I did not understand which group to ask
>> help from.  I volunteered to  ask for help.
>>
>>
>>
>> If you or anyone can point me to where to go without taking valuable WG
>> time, it would be great.  If you need me to explain more on email, I’d be
>> glad to.
>>
>>
>>
>> Rather than just pose this question from the Mike-line, I thought I’d ask
>> ahead of time.
>>
>>
>>
>> Cheers, sue
>>
>>
>>
>> *From:* Linda Dunbar <linda.dunbar@futurewei.com>
>> *Sent:* Tuesday, July 19, 2022 6:09 PM
>> *To:* Susan Hares <shares@ndzh.com>; i2nsf@ietf.org
>> *Subject:* RE: IETF 114 I2NSF agenda uploaded
>>
>>
>>
>>
>>
>> Sue,
>>
>>
>>
>> Are you talking about IPsec between two trusted nodes?
>>
>> Something different from the IPsecme WG?
>>
>>
>>
>> Linda
>>
>>
>>
>> *From:* Susan Hares <shares@ndzh.com>
>> *Sent:* Tuesday, July 19, 2022 3:00 PM
>> *To:* Linda Dunbar <linda.dunbar@futurewei.com>; i2nsf@ietf.org
>> *Subject:* RE: IETF 114 I2NSF agenda uploaded
>>
>>
>>
>> Linda:
>>
>>
>>
>> In the recharter discussion, is it appropriate to ask about specific
>> items such as additions to ipsec work in I2NSF?
>>
>> I do not have a draft for this work.
>>
>>
>>
>> Sue
>>
>>
>>
>> *From:* I2nsf <i2nsf-bounces@ietf.org> *On Behalf Of *Linda Dunbar
>> *Sent:* Tuesday, July 19, 2022 3:44 PM
>> *To:* i2nsf@ietf.org
>> *Subject:* [I2nsf] IETF 114 I2NSF agenda uploaded
>>
>>
>>
>>
>>
>> I2NSF WG,
>>
>>
>>
>> Here is the agenda for next week’s I2NSF session (Tuesday).
>>
>>
>>
>> https://datatracker.ietf.org/doc/agenda-114-i2nsf/
>> <https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fagenda-114-i2nsf%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C8b5d4da98b89456a579d08da69c1548c%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C1%7C637938576342441642%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000%7C%7C%7C&sdata=N040a56pN%2BLVElz5IOt4jddwoHRH1pKTpTkAPMhd%2BD4%3D&reserved=0>
>>
>>
>>
>> Please let me know if I miss anything.
>>
>>
>>
>> Thank you.
>>
>> Linda
>> _______________________________________________
>> I2nsf mailing list
>> I2nsf@ietf.org
>> https://www.ietf.org/mailman/listinfo/i2nsf
>>
> _______________________________________________
> I2nsf mailing list
> I2nsf@ietf.org
> https://www.ietf.org/mailman/listinfo/i2nsf
>
>
> ------------------------------------------------------
> Rafa Marin-Lopez, PhD
> Dept. Information and Communications Engineering (DIIC)
> Faculty of Computer Science-University of Murcia
> 30100 Murcia - Spain
> Telf: +34868888501 Fax: +34868884151 e-mail: rafa@um.es <rafa@um.es>
> -------------------------------------------------------
>
>

v2.23.0 | Report a Bug | By Email