Re: [IPsec] Draft: IKEv2/IPsec Context Definition

yogendra pal <jntupal@gmail.com> Mon, 17 February 2014 05:50 UTC

Return-Path: <jntupal@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F4151A02DD for <ipsec@ietfa.amsl.com>; Sun, 16 Feb 2014 21:50:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u6suTiDFxJt7 for <ipsec@ietfa.amsl.com>; Sun, 16 Feb 2014 21:50:56 -0800 (PST)
Received: from mail-qg0-x22d.google.com (mail-qg0-x22d.google.com [IPv6:2607:f8b0:400d:c04::22d]) by ietfa.amsl.com (Postfix) with ESMTP id 334521A030A for <ipsec@ietf.org>; Sun, 16 Feb 2014 21:50:55 -0800 (PST)
Received: by mail-qg0-f45.google.com with SMTP id j5so4379220qga.4 for <ipsec@ietf.org>; Sun, 16 Feb 2014 21:50:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=LS3BSs5bXa5l9vVdlHkloEsmO2Ku7wAZl2VWor4sAUI=; b=lTuelPSXmOfglK+7wZJ1GOdfROUJyZhEZRqZOWuMCNpz7vWrUIfP0aKfGjY2qyiTHv 1NiGVY9IrWSh0vnfzPIbq09HuoqA8P7TvY5mjgeewsyIN3CAmKqDNqC1uw+aysBgTemv Gn4gGfg2CyOBQWo/AmWAKrsb8s2hlRAGPgP316qc6NPkbMWAviVRQjtplgockiEtMv6M 7eTH3PMCXjAOZJ8wLCXeK+dDlwdBFvbKPInIVemE3Er9c7OvzG+ueK5VDDvojRt1wXJI vnwW2sGcPfbCbelkII7AfwKxBQj+nD7i1mU1fPlmqJVtAJEGbe8XR+hzlxg7+GtCi6zt gWqQ==
MIME-Version: 1.0
X-Received: by 10.224.121.137 with SMTP id h9mr32480396qar.55.1392616253561; Sun, 16 Feb 2014 21:50:53 -0800 (PST)
Received: by 10.229.232.202 with HTTP; Sun, 16 Feb 2014 21:50:53 -0800 (PST)
In-Reply-To: <CAHf5+hrQ52GPKsAZJF4ZyhFNXgwZJOTEm8u-KKqVbta6Bj=N1g@mail.gmail.com>
References: <CAHf5+hrQ52GPKsAZJF4ZyhFNXgwZJOTEm8u-KKqVbta6Bj=N1g@mail.gmail.com>
Date: Mon, 17 Feb 2014 11:20:53 +0530
Message-ID: <CA+dB4X4iRjk9hH3wyX8Qj93Kd77BnvGpsm=FK3OHho=S-+Ngiw@mail.gmail.com>
From: yogendra pal <jntupal@gmail.com>
To: Daniel Palomares <daniel.palomares.ietf@gmail.com>
Content-Type: multipart/alternative; boundary=089e0160c2421a204d04f293bdab
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/hp55FmW8PZIw783VNFYb8dkN1hw
Cc: IPsecme WG <ipsec@ietf.org>
Subject: Re: [IPsec] Draft: IKEv2/IPsec Context Definition
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Feb 2014 05:50:58 -0000

Hi Daniel,

Quickly went through your draft, have one input for you,
[In section "*5. IPsec Session parameters*"]
 - Consider to have case of IPCOMP also for ipsec session parameters.


BR,
Yogendra Pal
(Ericsson)


On Thu, Feb 13, 2014 at 7:39 PM, Daniel Palomares <
daniel.palomares.ietf@gmail.com> wrote:

> Hi,
>
> Please find a draft we have Posted. They concern the definition of IKEv2
> and IPsec contexts.
> Comments are welcome,
>
> BR,
>
> Daniel Palomares
>
>
>
>
>
> Name:        draft-plmrs-ipsecme-ipsec-ikev2-context-definition.
>
> Revision: 00
> Title:       IKEv2/IPsec Context Definition
> Document date:    2014-02-12
> Group:        Individual Submission
> Pages:        8
> URL:
> http://www.ietf.org/id/draft-plmrs-ipsecme-ipsec-ikev2-context-definition-00.txt<http://www.ietf.org/internet-drafts/draft-mglt-dice-diet-esp-00.txt>
> Status:
> https://datatracker.ietf.org/doc/draft-plmrs-ipsecme-ipsec-ikev2-context-definition/
> Htmlized:
> http://tools.ietf.org/html/draft-plmrs-ipsecme-ipsec-ikev2-context-definition-00
>
>
> Abstract
>
>    IPsec/IKEv2 clusters are constituted of multiple nodes accessed via a
>    single address by the end user.  The traffic is then split between
>    the nodes via specific IP load balancing policies.  Once a session is
>    assigned to a given node, IPsec makes it difficult to assign the
>    session to another node.  This makes management operations and
>    transparent high availability for end users difficult to perform
>    within the cluster.
>
>    This document describes the contexts for IKEv2 and IPsec that MUST be
>    transferred between two nodes so a session can be restored.  This
>    makes possible to transfer an IPsec session transparently to the end
>    user.
>
>
>
> *Daniel* *PALOMARES*
>
> *Orange Labs, Issy-les-Moulineaux*
>
> +33 6 34 23 07 88
>
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec
>
>