IETF Logo Mail Archive

Re: [I2nsf] IETF 114 I2NSF agenda uploaded

"Diego R. Lopez" <diego.r.lopez@telefonica.com> Wed, 20 July 2022 15:48 UTC

Return-Path: <diego.r.lopez@telefonica.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F998C157B3B for <i2nsf@ietfa.amsl.com>; Wed, 20 Jul 2022 08:48:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.592
X-Spam-Level:
X-Spam-Status: No, score=-7.592 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=telefonica.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xPxC_eYMuWxz for <i2nsf@ietfa.amsl.com>; Wed, 20 Jul 2022 08:48:17 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2139.outbound.protection.outlook.com [40.107.20.139]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AA23C16ED0A for <i2nsf@ietf.org>; Wed, 20 Jul 2022 08:48:16 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JrdmYw42GDoiFO4cZB4Gu/qIjG+yWJMPeuHiU/U5okuTxpRNvWzuLufy19xa+M7OOeRxA43MgZrZRs31pshQVX9ldM6+r/scLnDjuD5bM1otM3Ggm+rgT8fl2EWG0OaRiBP+DOX1POnz9hJohD0wbPMcJae0BeLUDz2P48Jg/xlcnUWtRHWzzD67wlQvJyIO/IHDJ6su80L7AiOzzXIYIdSckzWi1IzbopBhyS71gU0cBWzbtCnBII8vJl+Yxqc2gZTy6BkICr2LkhN0u546u0wUei3gtzmMkTAfvHKbjaclz3zaP2bw4eRq56GGM1CecHwKDnKoD2uYZW70rueghQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=adE5m1BkJ+xsA9J08auSEqQ8w48z7M2B60iBzEvPfEM=; b=W9A4DjDafIrcqMg2NgHE8rh2yzapusCXrtHL5yKDwfb3qyRDt1Ns257QnokxotjR4Vn+hHSwKsjRpl9Y7rsmECcSL3Xmfov0hZfAYAOPcASmpvWpBgHKN2Y2FP019wg3kAhpgJp6pT3uN2TeJ3UFYhlgQBcK1o29Z6EIjkIX8lht4C0bEIC4oLBDYD2qTXFzt30EcBa1mPquM1VbY2EkLafxOtHer5k6g5WFjFMnIl22duxYwjdpbimAQAiNIDDU8yjLFHVtqOMrigVirN6N/AlK7G0MWZR0rfL4P+z6DSRRm3NAER9PnYaNcypIh6PTIWs+V2hgElw7Ih+Z8uLvnA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=telefonica.com; dmarc=pass action=none header.from=telefonica.com; dkim=pass header.d=telefonica.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telefonica.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=adE5m1BkJ+xsA9J08auSEqQ8w48z7M2B60iBzEvPfEM=; b=R7W4YFj+6VFo3Yfr2kRlcxQKeSBhdXmF4CknF9M4tdc4UroI1/jW6SUveOasweHm493q/ok/BdjBy1sdaufYwsKgefXkn2dkP+7jYFm/jK4G1ps2qsAaInrop3wAs5/AOYuxKLRcVJKJX2Epunx2UCQ0oRrC9uVU9NCKm9yYVEY=
Received: from VE1PR06MB7150.eurprd06.prod.outlook.com (2603:10a6:800:1a5::19) by AM6PR06MB5157.eurprd06.prod.outlook.com (2603:10a6:20b:64::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5438.21; Wed, 20 Jul 2022 15:48:12 +0000
Received: from VE1PR06MB7150.eurprd06.prod.outlook.com ([fe80::9509:5a41:95ab:ddba]) by VE1PR06MB7150.eurprd06.prod.outlook.com ([fe80::9509:5a41:95ab:ddba%8]) with mapi id 15.20.5438.023; Wed, 20 Jul 2022 15:48:12 +0000
From: "Diego R. Lopez" <diego.r.lopez@telefonica.com>
To: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>, Susan Hares <shares@ndzh.com>
CC: Linda Dunbar <linda.dunbar@futurewei.com>, "i2nsf@ietf.org" <i2nsf@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>
Thread-Topic: [I2nsf] IETF 114 I2NSF agenda uploaded
Thread-Index: AdibqO357bsrBWdiTgWfhcI+UrMg/wAAQofwAARJJjAAHIuDQAAIWlaAAASLVgA=
Date: Wed, 20 Jul 2022 15:48:12 +0000
Message-ID: <FE34E26E-8243-4FD1-BA77-FE7BBC565F41@telefonica.com>
References: <CO1PR13MB49205BB48AB81D9BE50E0E77858F9@CO1PR13MB4920.namprd13.prod.outlook.com> <BYAPR08MB4872301332C1854F7DA78AFFB38F9@BYAPR08MB4872.namprd08.prod.outlook.com> <CO1PR13MB4920200D70DC11FBF9DDA04E858F9@CO1PR13MB4920.namprd13.prod.outlook.com> <BYAPR08MB48722EA2CCAD37AC12960FEFB38E9@BYAPR08MB4872.namprd08.prod.outlook.com> <CAPK2Dex2zkoNxr7F9vvbTm6r9OvAmtUcmY=Fd279Xaq_uCWcsA@mail.gmail.com>
In-Reply-To: <CAPK2Dex2zkoNxr7F9vvbTm6r9OvAmtUcmY=Fd279Xaq_uCWcsA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.63.22070801
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=telefonica.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 856d2f6a-800f-4b5c-f1f8-08da6a6740de
x-ms-traffictypediagnostic: AM6PR06MB5157:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VE1PR06MB7150.eurprd06.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(376002)(366004)(346002)(396003)(39860400002)(136003)(66946007)(76116006)(53546011)(66556008)(186003)(64756008)(4326008)(8676002)(26005)(38100700002)(83380400001)(478600001)(66476007)(66574015)(36756003)(41300700001)(6512007)(8936002)(6506007)(966005)(6486002)(66446008)(33656002)(38070700005)(5660300002)(2616005)(122000001)(71200400001)(82960400001)(2906002)(110136005)(316002)(166002)(86362001)(91956017)(45080400002)(54906003)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_FE34E26E82434FD1BA77FE7BBC565F41telefonicacom_"
MIME-Version: 1.0
X-OriginatorOrg: telefonica.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: VE1PR06MB7150.eurprd06.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 856d2f6a-800f-4b5c-f1f8-08da6a6740de
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jul 2022 15:48:12.8718 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9744600e-3e04-492e-baa1-25ec245c6f10
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: uZrnPfSmkArnJiqNu3Fgv2r9v6z005KXpwLM90A9CJzeho8niHhLUBkmf+tWVzKSWcqPj7tbOrLRdAPiN+HCM3l+b3bEl+ohdZ5+okgy8MM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR06MB5157
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/lK_Rp1aQn7u6-7P0hs7Yihvc7Qg>
Subject: Re: [I2nsf] IETF 114 I2NSF agenda uploaded
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jul 2022 15:48:22 -0000

Hi,

I totally concur with Paul here. We have some experience in applying RFC 9061 in different scenarios and would be more than happy to explore its applicability in this case as well.

Be goode,

--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez
Telefonica I+D
https://www.linkedin.com/in/dr2lopez/

e-mail: diego.r.lopez@telefonica.com<mailto:diego.r.lopez@telefonica.com>
Mobile:  +34 682 051 091
----------------------------------

On 20/7/22, 17:38, "I2nsf on behalf of Mr. Jaehoon Paul Jeong" <i2nsf-bounces@ietf.org<mailto:i2nsf-bounces@ietf.org> on behalf of jaehoon.paul@gmail.com<mailto:jaehoon.paul@gmail.com>> wrote:

Hi Sue,
I have much interest in your proposed item.
I think the following RFC 9061 can be used for the IPsec interface for BGP over IPsec.

- RFC 9061: A YANG Data Model for IPsec Flow Protection Based on Software-Defined Networking (SDN)
https://datatracker.ietf.org/doc/html/rfc9061

We can regard BGP routers as NSFs, and we can run either IKE or IKE-less approach in RFC 9061.
We can also extend the approach in RFC 9061 so that it can accommodate BGP message exchanges
(e.g., AS-PATH and NEXT-HOP attributes).

I will investigate RFC 9061 more to see whether my comments are correct or not.

Thanks.

Best Regards,
Paul

On Wed, Jul 20, 2022 at 8:55 PM Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>> wrote:
Linda:

I apologize for being unclear.  We ran into a few problems with trying to complete the BGP Yang model in the area of IPsec links.   BGP runs over TCP over IPsec links in some scenarios.  When creating the modeling, it was unclear which Yang modules were targeted to support this feature.

What I need is advice from the I2NSF and the IPSECME on the place to ask for work additions to support BGP peers.

The scenario is between two BGP routers. The type of IPsec connections between BGP routers can be:

·         within a trusted cloud (same administrative domain, same trust cloud),

·         across a physically secure private link,

·         across the open Internet (where attacks happen).

The key is we want to configure and monitor the IPsec link.

As BGP co-authors looked at this, I did not understand which group to ask help from.  I volunteered to  ask for help.

If you or anyone can point me to where to go without taking valuable WG time, it would be great.  If you need me to explain more on email, I’d be glad to.

Rather than just pose this question from the Mike-line, I thought I’d ask ahead of time.

Cheers, sue

From: Linda Dunbar <linda.dunbar@futurewei.com<mailto:linda.dunbar@futurewei.com>>
Sent: Tuesday, July 19, 2022 6:09 PM
To: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; i2nsf@ietf.org<mailto:i2nsf@ietf.org>
Subject: RE: IETF 114 I2NSF agenda uploaded


Sue,

Are you talking about IPsec between two trusted nodes?
Something different from the IPsecme WG?

Linda

From: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>
Sent: Tuesday, July 19, 2022 3:00 PM
To: Linda Dunbar <linda.dunbar@futurewei.com<mailto:linda.dunbar@futurewei.com>>; i2nsf@ietf.org<mailto:i2nsf@ietf.org>
Subject: RE: IETF 114 I2NSF agenda uploaded

Linda:

In the recharter discussion, is it appropriate to ask about specific items such as additions to ipsec work in I2NSF?
I do not have a draft for this work.

Sue

From: I2nsf <i2nsf-bounces@ietf.org<mailto:i2nsf-bounces@ietf.org>> On Behalf Of Linda Dunbar
Sent: Tuesday, July 19, 2022 3:44 PM
To: i2nsf@ietf.org<mailto:i2nsf@ietf.org>
Subject: [I2nsf] IETF 114 I2NSF agenda uploaded


I2NSF WG,

Here is the agenda for next week’s I2NSF session (Tuesday).

https://datatracker.ietf.org/doc/agenda-114-i2nsf/<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fagenda-114-i2nsf%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C8b5d4da98b89456a579d08da69c1548c%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C1%7C637938576342441642%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000%7C%7C%7C&sdata=N040a56pN%2BLVElz5IOt4jddwoHRH1pKTpTkAPMhd%2BD4%3D&reserved=0>

Please let me know if I miss anything.

Thank you.
Linda
_______________________________________________
I2nsf mailing list
I2nsf@ietf.org<mailto:I2nsf@ietf.org>
https://www.ietf.org/mailman/listinfo/i2nsf

________________________________

Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is confidential and privileged information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição

v2.23.0 | Report a Bug | By Email