[Idr] Questions to draft-hujun-idr-bgp-ipsec-transport-mode-00.txt

Linda Dunbar <linda.dunbar@futurewei.com> Sun, 17 November 2019 12:32 UTC

Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 004B61200FD for <idr@ietfa.amsl.com>; Sun, 17 Nov 2019 04:32:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KfWBbmlGFvSu for <idr@ietfa.amsl.com>; Sun, 17 Nov 2019 04:32:13 -0800 (PST)
Received: from NAM01-SN1-obe.outbound.protection.outlook.com (mail-eopbgr820098.outbound.protection.outlook.com [40.107.82.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 844641200F9 for <idr@ietf.org>; Sun, 17 Nov 2019 04:32:13 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ZiNfo7MSYNGXBHxy/SlA7ugrD4SZP2TaX91HJxzC2vO85ffMqZG2D+Z7D9m+jJ/Pi5OwnNSPtLmZpN07bwic5+BfFMnoOUDmX/TPPf7JJYBD1x76HfkZ7NqjHnL9T8vFs9dtwZEm6AdbnwbBs82+021rMDwXhI8T8w21BDDCYdVAn6at5lcTWl01K09FWRufKNGYfjWUc1bJejZhavhHNxcsBE96FYl9NKR2NY6cEPMeouPJr6UOLp3QXgnb+dW5mWrmTA0zuiDQG5XYnhbSMnDIHdM+AGxqXBzYUKFStqtJLbZnyogYYD4rrpWthKjh0Hdeqpj73Xou7emmVB5CWw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IPfyBdzLNOQp28NKrtTGlcZXpz4TqzLTH85A8ceSxAU=; b=ai3SGsHBCfnbPMecUpVz/+Iau/wlGNwKFxSV89iRu6wEV/yVB92lT2y2CMU2kPuxU2HoJiy/OUXEhxhTl3O/sI4S/OfdsALcJmt4T1+U4s4p9QnBA7uOGxb0VwjVd3RmJqKCPelumb2+a8gQWWxwZynN0PuIkeC1q576BSoI83MYHAwY+GJZOq3KJYsYlpsg1EHY63GuLhb6Oj/4XsGO8a1wE/njVCdgt5OLAG/u3ccsih/EaJnDYaMQ182k30VAW0j5NPupvBPrQYHqJKUDXqAXO12MWrZyutpN6Uke5Cb7rveabI7lpeET/pOm3OMse4vr1fmWjwPt58txlwAbvA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IPfyBdzLNOQp28NKrtTGlcZXpz4TqzLTH85A8ceSxAU=; b=s9nhXUixtODLsUjgdHVsbL22I0RcttT84z/yRafeZ8Zgl7FqQELHXycyEa40vLKEbLD2uSqMw3ddXWoBnWrhILdjxD+igET+ujfcBW98SaXp4qlQvKNQms4STGL9OgAtOglplWFjwgjrnDr/8QgU3MRpS4KwGUWQ6HzbGjGYL/U=
Received: from BN8PR13MB2628.namprd13.prod.outlook.com (20.178.219.10) by BN8PR13MB2849.namprd13.prod.outlook.com (20.178.219.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2474.13; Sun, 17 Nov 2019 12:32:10 +0000
Received: from BN8PR13MB2628.namprd13.prod.outlook.com ([fe80::a89e:acd9:3ed9:998d]) by BN8PR13MB2628.namprd13.prod.outlook.com ([fe80::a89e:acd9:3ed9:998d%6]) with mapi id 15.20.2474.012; Sun, 17 Nov 2019 12:32:10 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: "Hu, Jun (Nokia - US/Mountain View)" <jun.hu@nokia.com>, "idr@ietf.org" <idr@ietf.org>
CC: 'Paul Wouters' <paul@nohats.ca>, 'Benjamin Kaduk' <kaduk@mit.edu>, Susan Hares <shares@ndzh.com>
Thread-Topic: Questions to draft-hujun-idr-bgp-ipsec-transport-mode-00.txt
Thread-Index: AdWdPV3psmdbFHfvSpeWCObujYyAzA==
Date: Sun, 17 Nov 2019 12:32:09 +0000
Message-ID: <BN8PR13MB26282ECD078CCDC78208E15385720@BN8PR13MB2628.namprd13.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=linda.dunbar@futurewei.com;
x-originating-ip: [31.133.157.149]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d52db80d-f904-4033-ad7f-08d76b5a2a8f
x-ms-traffictypediagnostic: BN8PR13MB2849:
x-microsoft-antispam-prvs: <BN8PR13MB2849EC0812153FC3C0D3AC0B85720@BN8PR13MB2849.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6108;
x-forefront-prvs: 02243C58C6
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(346002)(136003)(376002)(39830400003)(366004)(189003)(199004)(13464003)(6116002)(3846002)(71200400001)(71190400001)(81166006)(53546011)(81156014)(99286004)(7736002)(54906003)(110136005)(74316002)(6506007)(305945005)(8676002)(966005)(26005)(66066001)(7696005)(6306002)(6436002)(9686003)(186003)(55016002)(2906002)(476003)(44832011)(4326008)(25786009)(486006)(66574012)(52536014)(478600001)(86362001)(45080400002)(102836004)(316002)(296002)(8936002)(2501003)(5660300002)(14454004)(33656002)(66556008)(76116006)(64756008)(66946007)(256004)(14444005)(66446008)(4001150100001)(66476007); DIR:OUT; SFP:1102; SCL:1; SRVR:BN8PR13MB2849; H:BN8PR13MB2628.namprd13.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: futurewei.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: pOpZNsld4A19BFZKaVfYOpchVR3xevrFrZUVT8M5sTsJh95Lf9JxoROpWa6iK44mbQTjxov+M66M3C4QHgt6kgvDSEIKYEP/DkjIDoyrjBKFloBZNS9moOUx4Cqwf+kFKABbi3R6F8F8esWVDwv4UI0WqeZLgshs6FslaEaHj+2tKWG8T2fgha2EP14JEEJnW3tC/Uq/mW/nkuNBoQzzvt/S04YEonSg6xLCzmLAc1zLI3MSgI/ibCq3z2Aj4la2Z7N9Qitd7aOt9s8V7MgB1yWuQWcL76HpRBxOny5bLV3c4I/rUGscoS3eLbQuBMfhxZPUON1iPc57+v3pImtXbXx4r1NYVzuvGCeMVDhQo/O+mpSvMKWv9316j5N0A0ang5jcCcNpqtqaluAhhJO6RXsk1HEVtuutmvljwFQd/0MSbe4wn/dtJ+OLLr2ckKAQ
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d52db80d-f904-4033-ad7f-08d76b5a2a8f
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Nov 2019 12:32:10.0862 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: UZ2TZqDwLfSYPBGs7SCl3cIPsEVU089VorOwCO42ZjhVaVmZXfQKITrn2pCmX1EQY5h1L3rlx3C6S0UpSfsISw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN8PR13MB2849
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/2n85H24TEI099vLEkNQv_FswJW0>
Subject: [Idr] Questions to draft-hujun-idr-bgp-ipsec-transport-mode-00.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Nov 2019 12:32:16 -0000

Jun, 

I have some questions on your draft:

Figure 4: does R1 use Subnet A in NLRI? And have Tunnel-Encap with more detailed description on SubnetA<->SubnetB  & SubnetA<->Subnet C? 

How does R1 need to know that Subnet A and Subnet B needs to communicate ahead of time? 

Linda


-----Original Message-----
From: Idr <idr-bounces@ietf.org> On Behalf Of Hu, Jun (Nokia - US/Mountain View)
Sent: Friday, October 11, 2019 6:46 AM
To: idr@ietf.org
Cc: 'Paul Wouters' <paul@nohats.ca>ca>; 'Benjamin Kaduk' <kaduk@mit.edu>du>; Susan Hares <shares@ndzh.com>
Subject: [Idr] FW: New Version Notification for draft-hujun-idr-bgp-ipsec-transport-mode-00.txt

Hi,
Here is a new draft for using BGP to provision IPsec transport mode protected tunnel config; this draft is in companion with draft-hujun-idr-bgp-ipsec-01 (Ipsec tunnel mode) to provide a complete solution of using BGP provision IPsec config.

Review and comment will be appreciated. 

-----Original Message-----
From: internet-drafts@ietf.org <internet-drafts@ietf.org> 
Sent: Thursday, October 10, 2019 3:41 PM
To: Hu, Jun (Nokia - US/Mountain View) <jun.hu@nokia.com>om>; Hu, Jun (Nokia - US/Mountain View) <jun.hu@nokia.com>
Subject: New Version Notification for draft-hujun-idr-bgp-ipsec-transport-mode-00.txt


A new version of I-D, draft-hujun-idr-bgp-ipsec-transport-mode-00.txt
has been successfully submitted by Hu Jun and posted to the IETF repository.

Name:		draft-hujun-idr-bgp-ipsec-transport-mode
Revision:	00
Title:		BGP Provisioned IPsec Transport Mode Protected Tunnel Configuration
Document date:	2019-10-10
Group:		Individual Submission
Pages:		7
URL:            https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Finternet-drafts%2Fdraft-hujun-idr-bgp-ipsec-transport-mode-00.txt&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C0099e48ac8854dcfe90f08d74dd3a2cb%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637063443677284261&amp;sdata=nVGm8ifLrt6dwyLm1WCyaRfgsd6w%2FmJwXtKoVsXx5f0%3D&amp;reserved=0
Status:         https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-hujun-idr-bgp-ipsec-transport-mode%2F&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C0099e48ac8854dcfe90f08d74dd3a2cb%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637063443677284261&amp;sdata=dOWaaVqKGqfY%2Fcsh%2Bg222wJXkNqa4d21DRbKd6osyVE%3D&amp;reserved=0
Htmlized:       https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-hujun-idr-bgp-ipsec-transport-mode-00&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C0099e48ac8854dcfe90f08d74dd3a2cb%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637063443677284261&amp;sdata=C07AXwMSYL56roSiqIVpaMC5zWvvcr8kIUvgjGHskwQ%3D&amp;reserved=0
Htmlized:       https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-hujun-idr-bgp-ipsec-transport-mode&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C0099e48ac8854dcfe90f08d74dd3a2cb%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637063443677284261&amp;sdata=xR5u8J6P5pj5eA9khQCqcNhujr%2BRV7rWIkldS4kOqp4%3D&amp;reserved=0


Abstract:
   This document defines a method of using BGP to advertise IPsec
   transport mode protected tunnel (like GRE tunnel with IPsec transport
   mode protection) configuration along with NLRI, based on
   [I-D.ietf-idr-tunnel-encaps] and [I-D.hujun-idr-bgp-ipsec].

                                                                                  


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

_______________________________________________
Idr mailing list
Idr@ietf.org
https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fidr&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C0099e48ac8854dcfe90f08d74dd3a2cb%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637063443677284261&amp;sdata=QrCi3EnAQcbMGnfL%2FUZLUOOkw4MMdtPjphgrYJK4Lx4%3D&amp;reserved=0