[IPsec] New draft for address ADVPN (draft-sathyanarayan-ipsecme-advpn-00)
Praveen Sathyanarayan <praveenys@juniper.net> Sun, 07 July 2013 02:06 UTC
Return-Path: <praveenys@juniper.net>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C62D221F84DC for <ipsec@ietfa.amsl.com>; Sat, 6 Jul 2013 19:06:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.467
X-Spam-Level:
X-Spam-Status: No, score=-3.467 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, UNRESOLVED_TEMPLATE=3.132]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6EfP-xJVbKm6 for <ipsec@ietfa.amsl.com>; Sat, 6 Jul 2013 19:06:18 -0700 (PDT)
Received: from co9outboundpool.messaging.microsoft.com (co9ehsobe004.messaging.microsoft.com [207.46.163.27]) by ietfa.amsl.com (Postfix) with ESMTP id 170EA21F9D16 for <ipsec@ietf.org>; Sat, 6 Jul 2013 19:06:18 -0700 (PDT)
Received: from mail44-co9-R.bigfish.com (10.236.132.234) by CO9EHSOBE001.bigfish.com (10.236.130.64) with Microsoft SMTP Server id 14.1.225.22; Sun, 7 Jul 2013 02:06:17 +0000
Received: from mail44-co9 (localhost [127.0.0.1]) by mail44-co9-R.bigfish.com (Postfix) with ESMTP id 8974B340185 for <ipsec@ietf.org>; Sun, 7 Jul 2013 02:06:17 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:66.129.224.50; KIP:(null); UIP:(null); IPV:NLI; H:P-EMHUB02-HQ.jnpr.net; RD:none; EFVD:NLI
X-SpamScore: -21
X-BigFish: PS-21(zz4015Izz1f42h1ee6h1de0h1fdah2073h1202h1e76h1d1ah1d2ah1fc6hzz1033IL17326ah8275dhz2fh2a8h683h839h947he5bhf0ah1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h1ad9h1b0ah1d0ch1d2eh1d3fh1dc1h1dfeh1dffh1e1dh1155h)
Received-SPF: pass (mail44-co9: domain of juniper.net designates 66.129.224.50 as permitted sender) client-ip=66.129.224.50; envelope-from=praveenys@juniper.net; helo=P-EMHUB02-HQ.jnpr.net ; -HQ.jnpr.net ;
X-Forefront-Antispam-Report-Untrusted: CIP:157.56.232.213; KIP:(null); UIP:(null); (null); H:BLUPRD0511HT002.namprd05.prod.outlook.com; R:internal; EFV:INT
Received: from mail44-co9 (localhost.localdomain [127.0.0.1]) by mail44-co9 (MessageSwitch) id 1373162775354727_11886; Sun, 7 Jul 2013 02:06:15 +0000 (UTC)
Received: from CO9EHSMHS006.bigfish.com (unknown [10.236.132.249]) by mail44-co9.bigfish.com (Postfix) with ESMTP id 4BAEB48004D for <ipsec@ietf.org>; Sun, 7 Jul 2013 02:06:15 +0000 (UTC)
Received: from P-EMHUB02-HQ.jnpr.net (66.129.224.50) by CO9EHSMHS006.bigfish.com (10.236.130.16) with Microsoft SMTP Server (TLS) id 14.1.225.23; Sun, 7 Jul 2013 02:06:11 +0000
Received: from P-CLDFE01-HQ.jnpr.net (172.24.192.59) by P-EMHUB02-HQ.jnpr.net (172.24.192.36) with Microsoft SMTP Server (TLS) id 8.3.213.0; Sat, 6 Jul 2013 19:06:11 -0700
Received: from o365mail.juniper.net (207.17.137.224) by o365mail.juniper.net (172.24.192.59) with Microsoft SMTP Server id 14.1.355.2; Sat, 6 Jul 2013 19:06:10 -0700
Received: from CO9EHSOBE021.bigfish.com (207.46.163.25) by o365mail.juniper.net (207.17.137.224) with Microsoft SMTP Server (TLS) id 14.1.355.2; Sat, 6 Jul 2013 19:18:55 -0700
Received: from mail121-co9-R.bigfish.com (10.236.132.244) by CO9EHSOBE021.bigfish.com (10.236.130.84) with Microsoft SMTP Server id 14.1.225.22; Sun, 7 Jul 2013 02:06:10 +0000
Received: from mail121-co9 (localhost [127.0.0.1]) by mail121-co9-R.bigfish.com (Postfix) with ESMTP id 22543940332 for <ipsec@ietf.org.FOPE.CONNECTOR.OVERRIDE>; Sun, 7 Jul 2013 02:06:09 +0000 (UTC)
Received: from mail121-co9 (localhost.localdomain [127.0.0.1]) by mail121-co9 (MessageSwitch) id 1373162758248887_22897; Sun, 7 Jul 2013 02:05:58 +0000 (UTC)
Received: from CO9EHSMHS012.bigfish.com (unknown [10.236.132.247]) by mail121-co9.bigfish.com (Postfix) with ESMTP id 2E1DDBC004C; Sun, 7 Jul 2013 02:05:58 +0000 (UTC)
Received: from BLUPRD0511HT002.namprd05.prod.outlook.com (157.56.232.213) by CO9EHSMHS012.bigfish.com (10.236.130.22) with Microsoft SMTP Server (TLS) id 14.1.225.23; Sun, 7 Jul 2013 02:05:54 +0000
Received: from BLUPRD0511MB413.namprd05.prod.outlook.com ([169.254.6.66]) by BLUPRD0511HT002.namprd05.prod.outlook.com ([10.255.135.165]) with mapi id 14.16.0324.000; Sun, 7 Jul 2013 02:05:52 +0000
From: Praveen Sathyanarayan <praveenys@juniper.net>
To: IPsecme WG <ipsec@ietf.org>
Thread-Topic: New draft for address ADVPN (draft-sathyanarayan-ipsecme-advpn-00)
Thread-Index: AQHOeraBZuGjW2/X8kKJ6r4RrH5Kjg==
Date: Sun, 07 Jul 2013 02:05:52 +0000
Message-ID: <CDFE1B10.546AF%praveenys@juniper.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.3.0.121105
x-originating-ip: [10.255.135.132]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <7782F9A4B17CAE4EA3674E36BE8117BE@namprd05.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
X-FOPE-CONNECTOR: Id%12219$Dn%IETF.ORG$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
X-FOPE-CONNECTOR: Id%12219$Dn%CHECKPOINT.COM$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
X-FOPE-CONNECTOR: Id%12219$Dn%HUAWEI.COM$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
X-FOPE-CONNECTOR: Id%12219$Dn%GMAIL.COM$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
X-OriginatorOrg: juniper.net
Cc: Stephen Hanna <shanna@juniper.net>, "ynir@checkpoint.com" <ynir@checkpoint.com>, Suresh Melam <nmelam@juniper.net>, Praveen Sathyanarayan <praveenys@juniper.net>, "k.pentikousis@huawei.com" <k.pentikousis@huawei.com>, "mglt.ietf@gmail.com" <mglt.ietf@gmail.com>
Subject: [IPsec] New draft for address ADVPN (draft-sathyanarayan-ipsecme-advpn-00)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Jul 2013 02:06:24 -0000
Hi, Please find new draft that specifies a protocol to address ADVPN Requirement (draft-ietf-ipsecme-p2p-vpn-problem-07.txt). This document proposes a protocol that can demonstratively scale in large IPsec deployments while ensuring that routing stretch is minimized and network resources are used more optimally. The proposed protocol extends [IKEV2] to meet the requirements spelled out in draft-ietf-ipsecme-p2p-vpn-problem-07.txt, providing a standard way to dynamically establish and tear down IPsec tunnels as needed without requiring non-scalable configuration. The protocol introduces the concept of a ³shortcut" which can be used by compliant IPsec gateways to optimize the traffic path between two peers. The protocol has provisions for adhering to established policies and is applicable to single- and multi-domain environments. Shortcuts can be established and torn dynamically and, the proposed solution is applicable to a variety of use cases and scenarios, pertaining to both wired and wireless networks. URL: http://www.ietf.org/id/draft-sathyanarayan-ipsecme-advpn-00.txt Please provide us your feedback. Thanks, Praveen
- [IPsec] New draft for address ADVPN (draft-sathya… Praveen Sathyanarayan
- Re: [IPsec] New draft for address ADVPN (draft-sa… Paul Hoffman
- Re: [IPsec] New draft for addressing ADVPN (draft… Praveen Sathyanarayan
- Re: [IPsec] New draft for addressing ADVPN (draft… Paul Hoffman
- Re: [IPsec] New draft for addressing ADVPN (draft… Yoav Nir