Re: [IPsec] I-D Action: draft-ietf-ipsecme-add-ike-07.txt
mohamed.boucadair@orange.com Tue, 31 January 2023 14:23 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 56A0CC151524 for <ipsec@ietfa.amsl.com>; Tue, 31 Jan 2023 06:23:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.797
X-Spam-Level:
X-Spam-Status: No, score=-2.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZDyThI6awG5t for <ipsec@ietfa.amsl.com>; Tue, 31 Jan 2023 06:23:17 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.34]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 12B60C14F693 for <ipsec@ietf.org>; Tue, 31 Jan 2023 06:23:17 -0800 (PST)
Received: from opfednr01.francetelecom.fr (unknown [xx.xx.xx.65]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by opfednr23.francetelecom.fr (ESMTP service) with ESMTPS id 4P5nMl5zx3z5vtZ; Tue, 31 Jan 2023 15:23:15 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1675174995; bh=VS8t+srCbpO69zmlbIxViO/dfxrOovuWS2Wu+w4gWrE=; h=From:To:Subject:Date:Message-ID:Content-Type: Content-Transfer-Encoding:MIME-Version; b=YeGISV1FCcdj+3HnEHQdPkQSghKsXFj1mZQsWkWTkRSwEYUjbclvOKVb1CHZxPqVI imtJvrVya2rvrxF/umk8kULujuCVZM4R3hyqib+f0ZqaKZiPcKBwwsC9xGpyo9XAWt 0hkMjCRG07SmKXl6CfY5JMszOZ5pZ2fhnjzoB++1jQFb+nkOsKvGACRLoD8wXk2xVT IKbYQwcNqcGBgPcZKECtmsEedl83K/DzTMo7sXjVsVDPdzcJfcB3nmTYW30MZg5+Cw +pxkQ3VLjmvle0lxrxZMhnym5AI9ykCkwqO7vBfXTtziriuZ+uF7QJg+vcDhP1PIuv RuZtKO4nmQXWg==
From: mohamed.boucadair@orange.com
To: "ipsec@ietf.org" <ipsec@ietf.org>, Tero Kivinen <kivinen@iki.fi>
Thread-Topic: [IPsec] I-D Action: draft-ietf-ipsecme-add-ike-07.txt
Thread-Index: AQHZNX8AmmI/1Qa5Y06qlA33nO64wa64kx1w
Content-Class:
Date: Tue, 31 Jan 2023 14:23:15 +0000
Message-ID: <17966_1675174995_63D92453_17966_383_3_2000a34a0ce54dde9cb97d99924d3cde@orange.com>
References: <167517474984.55048.8470595929422809144@ietfa.amsl.com>
In-Reply-To: <167517474984.55048.8470595929422809144@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Enabled=true; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SetDate=2023-01-31T14:19:50Z; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Method=Privileged; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Name=unrestricted_parent.2; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ActionId=00c0c1a7-9392-4f89-98f7-6d97b09efe5d; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ContentBits=0
x-originating-ip: [10.115.27.51]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/dILxpo_gb9No02CSzeWEQKaS_RM>
Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-add-ike-07.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Jan 2023 14:23:21 -0000
Re-, This version takes into account Tero's review, mainly: * Indicate the encoding of the addresses * Split the ENCDNS_DIGEST_INFO figure into two * Add some text about CFG_ACK * clarify how the digest is computed * Add some examples and some other minor edits. Cheers, Med > -----Message d'origine----- > De : IPsec <ipsec-bounces@ietf.org> De la part de internet- > drafts@ietf.org > Envoyé : mardi 31 janvier 2023 15:19 > À : i-d-announce@ietf.org > Cc : ipsec@ietf.org > Objet : [IPsec] I-D Action: draft-ietf-ipsecme-add-ike-07.txt > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the IP Security Maintenance and > Extensions WG of the IETF. > > Title : Internet Key Exchange Protocol Version 2 > (IKEv2) Configuration for Encrypted DNS > Authors : Mohamed Boucadair > Tirumaleswar Reddy > Dan Wing > Valery Smyslov > Filename : draft-ietf-ipsecme-add-ike-07.txt > Pages : 16 > Date : 2023-01-31 > > Abstract: > This document specifies new Internet Key Exchange Protocol > Version 2 > (IKEv2) Configuration Payload Attribute Types to assign DNS > resolvers > that support encrypted DNS protocols, such as DNS-over-HTTPS > (DoH), > DNS-over-TLS (DoT), and DNS-over-QUIC (DoQ). > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-add-ike/ > > There is also an htmlized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-add-ike- > 07 > > A diff from the previous version is available at: > https://author-tools.ietf.org/iddiff?url2=draft-ietf-ipsecme-add- > ike-07 > > > Internet-Drafts are also available by rsync at > rsync.ietf.org::internet-drafts > > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [IPsec] I-D Action: draft-ietf-ipsecme-add-ike-07… internet-drafts
- Re: [IPsec] I-D Action: draft-ietf-ipsecme-add-ik… mohamed.boucadair
- Re: [IPsec] I-D Action: draft-ietf-ipsecme-add-ik… Tero Kivinen