[IPsec] Multi-access interfaces (with IPsec)
Toerless Eckert <tte@cs.fau.de> Fri, 04 August 2017 23:37 UTC
Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB65E129AF6 for <ipsec@ietfa.amsl.com>; Fri, 4 Aug 2017 16:37:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.199
X-Spam-Level:
X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eaj0d_6f6yv3 for <ipsec@ietfa.amsl.com>; Fri, 4 Aug 2017 16:37:14 -0700 (PDT)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [131.188.34.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A13D1129AD1 for <ipsec@ietf.org>; Fri, 4 Aug 2017 16:37:14 -0700 (PDT)
Received: from faui40p.informatik.uni-erlangen.de (faui40p.informatik.uni-erlangen.de [131.188.34.77]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id 2DB8958C4AF for <ipsec@ietf.org>; Sat, 5 Aug 2017 01:37:11 +0200 (CEST)
Received: by faui40p.informatik.uni-erlangen.de (Postfix, from userid 10463) id 09E2BB0C7BB; Sat, 5 Aug 2017 01:37:10 +0200 (CEST)
Date: Sat, 05 Aug 2017 01:37:10 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: ipsec@ietf.org
Message-ID: <20170804233710.GV3889@faui40p.informatik.uni-erlangen.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/RLli8s5GFFdFg17XdgJZjak6k0Y>
Subject: [IPsec] Multi-access interfaces (with IPsec)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Aug 2017 23:37:16 -0000
I want to describe (in some draft) the use of a virtual multi-access
interface that is mapped to multiple p2p associations (eg: IPsec).
Which i think is a pretty standard option in industry implementations, eg:
in hub routers for hub & spoke deployments.
Is there any good RFC reference that explains how this works, eg:
replicate ll-multicast to all p2p associations, learn peer addresses
from received packets or specific IPv6 signaling packets, use that
to send unicast into right p2p association, etc. pp.
I could not find a good reference RFC for this ;-(
Thanks!
Toerless
- [IPsec] Multi-access interfaces (with IPsec) Toerless Eckert
- Re: [IPsec] Multi-access interfaces (with IPsec) Daniel Migault
- Re: [IPsec] Multi-access interfaces (with IPsec) te36
- Re: [IPsec] Multi-access interfaces (with IPsec) Michael Richardson
- Re: [IPsec] Multi-access interfaces (with IPsec) te36
- Re: [IPsec] Multi-access interfaces (with IPsec) Michael Richardson