Re: [IPsec] My view of the requirements from AD-VPN
Praveen Sathyanarayan <praveenys@juniper.net> Mon, 24 March 2014 16:47 UTC
Return-Path: <praveenys@juniper.net>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECE7B1A0269 for <ipsec@ietfa.amsl.com>; Mon, 24 Mar 2014 09:47:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LFlr-lxCaHDr for <ipsec@ietfa.amsl.com>; Mon, 24 Mar 2014 09:47:10 -0700 (PDT)
Received: from tx2outboundpool.messaging.microsoft.com (tx2ehsobe003.messaging.microsoft.com [65.55.88.13]) by ietfa.amsl.com (Postfix) with ESMTP id 0AB421A0276 for <ipsec@ietf.org>; Mon, 24 Mar 2014 09:47:09 -0700 (PDT)
Received: from mail54-tx2-R.bigfish.com (10.9.14.253) by TX2EHSOBE012.bigfish.com (10.9.40.32) with Microsoft SMTP Server id 14.1.225.22; Mon, 24 Mar 2014 16:47:09 +0000
Received: from mail54-tx2 (localhost [127.0.0.1]) by mail54-tx2-R.bigfish.com (Postfix) with ESMTP id E883B460365; Mon, 24 Mar 2014 16:47:07 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.240.101; KIP:(null); UIP:(null); IPV:NLI; H:BL2PRD0510HT001.namprd05.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: -3
X-BigFish: VPS-3(zzbb2dI98dI9371Ida00hdc73hzz1f42h2148h208ch1ee6h1de0h1fdah2073h2146h1202h1e76h2189h1d1ah1d2ah21bch1fc6hzz1de098h8275bh1de097hz2fh109h2a8h839h946he5bhf0ah1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h19ceh1ad9h1b0ah224fh1d0ch1d2eh1d3fh1dfeh1dffh1fe8h1ff5h209eh2216h22d0h2336h2438h2461h2487h24d7h2516h2545h255eh25cch25f6h2605h268bh1155h)
Received-SPF: pass (mail54-tx2: domain of juniper.net designates 157.56.240.101 as permitted sender) client-ip=157.56.240.101; envelope-from=praveenys@juniper.net; helo=BL2PRD0510HT001.namprd05.prod.outlook.com ; .outlook.com ;
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(10009001)(6009001)(428001)(189002)(199002)(479174003)(377454003)(24454002)(92566001)(49866001)(47736001)(47976001)(50986001)(31966008)(90146001)(98676001)(81686001)(92726001)(4396001)(56816005)(85852003)(81816001)(47446002)(74502001)(83072002)(20776003)(66066001)(59766001)(65816001)(77982001)(19580405001)(19580395003)(80976001)(83322001)(63696002)(79102001)(95666003)(80022001)(95416001)(76796001)(74876001)(54316002)(87936001)(83506001)(56776001)(36756003)(74366001)(46102001)(2656002)(53806001)(93136001)(97336001)(69226001)(97186001)(81342001)(93516002)(51856001)(76482001)(94946001)(86362001)(54356001)(85306002)(81542001)(87266001)(74706001)(94316002); DIR:OUT; SFP:1101; SCL:1; SRVR:CO2PR05MB668; H:CO2PR05MB665.namprd05.prod.outlook.com; FPR:7B77A569.3F604435.BD38DC8.DBA32F7D.20087; MLV:sfv; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
Received: from mail54-tx2 (localhost.localdomain [127.0.0.1]) by mail54-tx2 (MessageSwitch) id 1395679610795651_22928; Mon, 24 Mar 2014 16:46:50 +0000 (UTC)
Received: from TX2EHSMHS001.bigfish.com (unknown [10.9.14.235]) by mail54-tx2.bigfish.com (Postfix) with ESMTP id AADFE480055; Mon, 24 Mar 2014 16:46:50 +0000 (UTC)
Received: from BL2PRD0510HT001.namprd05.prod.outlook.com (157.56.240.101) by TX2EHSMHS001.bigfish.com (10.9.99.101) with Microsoft SMTP Server (TLS) id 14.16.227.3; Mon, 24 Mar 2014 16:31:07 +0000
Received: from CO2PR05MB668.namprd05.prod.outlook.com (10.141.230.25) by BL2PRD0510HT001.namprd05.prod.outlook.com (10.255.100.36) with Microsoft SMTP Server (TLS) id 14.16.423.0; Mon, 24 Mar 2014 16:30:53 +0000
Received: from CO2PR05MB665.namprd05.prod.outlook.com (10.141.230.11) by CO2PR05MB668.namprd05.prod.outlook.com (10.141.230.25) with Microsoft SMTP Server (TLS) id 15.0.898.11; Mon, 24 Mar 2014 16:30:52 +0000
Received: from CO2PR05MB665.namprd05.prod.outlook.com ([10.141.230.11]) by CO2PR05MB665.namprd05.prod.outlook.com ([10.141.230.11]) with mapi id 15.00.0898.005; Mon, 24 Mar 2014 16:30:52 +0000
From: Praveen Sathyanarayan <praveenys@juniper.net>
To: Yoav Nir <ynir.ietf@gmail.com>, Yaron Sheffer <yaronf.ietf@gmail.com>
Thread-Topic: [IPsec] My view of the requirements from AD-VPN
Thread-Index: AQHPQOC1IObdycUSXU22LWq4zTUKsJrr0ewAgABl6gCAA83lAA==
Date: Mon, 24 Mar 2014 16:30:52 +0000
Message-ID: <CF5227DA.4694B%praveenys@juniper.net>
References: <CFEEA351-5C27-44DE-9B3E-5FFF35C87732@gmail.com> <532C74D6.8000208@gmail.com> <2CD37189-69B4-4BE8-ACD4-D6CC8E6C4146@gmail.com>
In-Reply-To: <2CD37189-69B4-4BE8-ACD4-D6CC8E6C4146@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.3.9.131030
x-originating-ip: [66.129.239.10]
x-forefront-prvs: 01604FB62B
Content-Type: text/plain; charset="Windows-1252"
Content-ID: <4CF5B901903DC84288FF15EE74AD6416@namprd05.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/5KtpYckOaid-T_FLMB3SE7OeILw
Cc: ipsec <ipsec@ietf.org>
Subject: Re: [IPsec] My view of the requirements from AD-VPN
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Mar 2014 16:47:13 -0000
On 3/21/14, 4:25 PM, "Yoav Nir" <ynir.ietf@gmail.com> wrote: > So without #3, I am not sure the effort is worthwhile. +1 for this. We started this effort to solve #3. To me, #1 and #2 are important requirements as well. But #3 is a must. ‹ Praveen
- [IPsec] My view of the requirements from AD-VPN Yoav Nir
- Re: [IPsec] My view of the requirements from AD-V… Yaron Sheffer
- Re: [IPsec] My view of the requirements from AD-V… Yoav Nir
- Re: [IPsec] My view of the requirements from AD-V… Praveen Sathyanarayan