IETF Logo Mail Archive

Re: [IPsec] New version of IPsec Cluster Solution Draft posted [earliar, HA design team started]

Yaron Sheffer <yaronf.ietf@gmail.com> Mon, 19 July 2010 16:08 UTC

Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F1EAF3A6934 for <ipsec@core3.amsl.com>; Mon, 19 Jul 2010 09:08:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xhc5PhGLFVTm for <ipsec@core3.amsl.com>; Mon, 19 Jul 2010 09:08:44 -0700 (PDT)
Received: from mail-wy0-f172.google.com (mail-wy0-f172.google.com [74.125.82.172]) by core3.amsl.com (Postfix) with ESMTP id 968763A686E for <ipsec@ietf.org>; Mon, 19 Jul 2010 09:08:42 -0700 (PDT)
Received: by wyf22 with SMTP id 22so330667wyf.31 for <ipsec@ietf.org>; Mon, 19 Jul 2010 09:08:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=3WAIxGwD2KW/HpKq6MxTvZlPWDm2eCXaaEeVXpmkYkA=; b=KaTwiq4Vu8XAEnVLwE1ZsXcBrpHB7SxRrM8aVr+t5f2gykoLq3BfpIz4fD8ZWK9d9V OM3xYG2Z0HoHvQIk3xlkngsnmeqnK3osBuRaADFfdk8LRXMTJJXJBc+I/QZPckYIGChz ifrLpMsago/AP84BSPpYpvzaLzyVHAM0cQZgk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=ZgjSjjq6RLQsj6+pM8Jvk6Zx4L4BFKK2NoxVWItuG2huuDng5Q9rEWWIR1VN1U28mK KUZOwDf2NhhJg+LKWimSRaoIP8FogWLXM0DLOUFI0GAicYgCH2E9QIhBZuxsP26uyzjK 40u709pVWP+l+Qw10Bpa2oev9Aq3zO/ObZtPE=
Received: by 10.227.142.132 with SMTP id q4mr4260544wbu.90.1279555733169; Mon, 19 Jul 2010 09:08:53 -0700 (PDT)
Received: from [10.0.0.1] (bzq-79-177-34-148.red.bezeqint.net [79.177.34.148]) by mx.google.com with ESMTPS id b18sm41976471wbb.7.2010.07.19.09.08.51 (version=SSLv3 cipher=RC4-MD5); Mon, 19 Jul 2010 09:08:52 -0700 (PDT)
Message-ID: <4C447891.8060708@gmail.com>
Date: Mon, 19 Jul 2010 19:08:49 +0300
From: Yaron Sheffer <yaronf.ietf@gmail.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.10) Gecko/20100527 Lightning/1.0b1 Thunderbird/3.0.5
MIME-Version: 1.0
To: Raj Singh <rsjenwar@gmail.com>
References: <AANLkTinsIhov3aVuKqVRf7gmHG5oG70e5OoM6yWc7NAQ@mail.gmail.com>
In-Reply-To: <AANLkTinsIhov3aVuKqVRf7gmHG5oG70e5OoM6yWc7NAQ@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: IPsecme WG <ipsec@ietf.org>
Subject: Re: [IPsec] New version of IPsec Cluster Solution Draft posted [earliar, HA design team started]
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Jul 2010 16:08:48 -0000

Hi everyone,

Please note that most of the discussion in Maastricht will be around 
this draft, so you are strongly encouraged to read it.

For those who cannot make it to Holland, please use the IETF audio 
streaming to listen in, and Jabber to participate in real time. More 
details here: http://www.ietf.org/meeting/78/remote-participation.html. 
We will *not* have WebEX for IPsecME this time.

Thanks,
	Yaron


On 07/19/2010 01:24 PM, Raj Singh wrote:
> Hi Group,
>
> We have come up with new version of the "IPsec Cluster Solution"draft
> addressing comments which we got, the new version can be find here:
> http://trac.tools.ietf.org/wg/ipsecme/trac/wiki/TempDocs.
> <http://trac.tools.ietf.org/wg/ipsecme/trac/wiki/TempDocs>
> We will submit the draft as soon as submission window re-opens.
> Please read the draft and give you comments before Maastricht meeting.
>
> Regards,
> Raj
>
>
> On Sun, Jul 11, 2010 at 4:39 PM, Raj Singh <rsjenwar@gmail.com
> <mailto:rsjenwar@gmail.com>> wrote:
>
>     Hi Group,
>
>     We would like to present the HA design team's output for IPsec
>     Cluster Solution Draft before Maastricht meeting as
>     http://tools.ietf.org/id/draft-kagarigi-ipsecme-ikev2-windowsync-03.txt
>
>     This draft solves the main issues of IPsec Cluster Problem Statement
>     draft using a simple IKEv2 protocol extension, and  provides
>     implementation advice for other issues.
>
>     I sincerely thanks all the team members of HA Design Team for
>     attending all internal meetings and giving their valuable inputs and
>     doing reviews.
>     My special thanks to Yaron and Yoav for their expert inputs and
>     comments. I would also like to thanks Paul for providing TeamSpeak
>     server for conducting internal design team meetings.
>
>     The team started with these draft as inputs.
>     1.
>     http://tools.ietf.org/html/draft-kagarigi-ipsecme-ikev2-windowsync-00 -
>     G. Kalyani
>     2.
>     http://www.ietf.org/id/draft-arora-ipsecme-ikev2-alt-tunnel-addresses-00.txt
>     J. Arora
>     3. http://www.ietf.org/id/draft-ietf-ipsecme-ipsec-ha-09.txt - Y.
>     Nir - As Input
>
>     The current draft is based on [1], then it got enhanced and extended
>     with all team's contribution.
>     The problem and solution presented in [2], is more towards load
>     balancing than HA cluster.
>     Also this problem can be solved using IKEv2 REDIRECT mechanism.
>     Also, this solution requires IKEv2
>     protocol change. So, this is deferred for now.
>
>     I request the IPsecME group members to review and give comments on
>     http://tools.ietf.org/id/draft-kagarigi-ipsecme-ikev2-windowsync-03.txt,
>     so that we can discuss this draft with more details in Maastricht
>     meeting.
>
>     Regards,
>     Raj Singh
>     On Fri, Jun 18, 2010 at 11:56 AM, Yaron Sheffer
>     <yaronf.ietf@gmail.com <mailto:yaronf.ietf@gmail.com>> wrote:
>
>         Hi,
>
>         As promised, we have started a design team on IPsec HA. Paul and
>         I have asked Raj Singh to lead the team. His job is to make sure
>         that the team meets regularly in the next few weeks, and
>         produces a good output document before the Maastricht
>         face-to-face meeting.
>
>         The initial membership of the team is:
>
>         - Raj Singh (rsjenwar@gmail.com <mailto:rsjenwar@gmail.com>, lead)
>
>         - Jitender Arora (JArora@acmepacket.com
>         <mailto:JArora@acmepacket.com>)
>         - Min Huang (huangmin@huaweisymantec.com
>         <mailto:huangmin@huaweisymantec.com>)
>         - Dacheng Zhang (zhangdacheng@huawei.com
>         <mailto:zhangdacheng@huawei.com>)
>         - Yoav Nir (ynir@checkpoint.com <mailto:ynir@checkpoint.com>)
>         - Yaron Sheffer (yaronf.ietf@gmail.com
>         <mailto:yaronf.ietf@gmail.com>, observer)
>
>         According to IETF rules (see
>         http://www.ietf.org/iesg/statement/design-team.htm), every
>         design team needs to have a mission statement. So here it is:
>
>         Produce a high-level solution document that covers most or all
>         of the issues raised by the HA problem statement
>         (draft-ietf-ipsecme-ipsec-ha). Any solution should be applicable
>         to different deployments, in order to accommodate the variety of
>         existing and future IPsec products. Solutions should have a
>         similar level of security as the IKE/IPsec suite.
>
>         Another process reminder: the design team's output serves as
>         input to the full WG, essentially like an individual draft. So
>         all protocol decisions will eventually be made by the working group.
>
>         Thanks,
>                 Yaron
>
>         _______________________________________________
>         IPsec mailing list
>         IPsec@ietf.org <mailto:IPsec@ietf.org>
>         https://www.ietf.org/mailman/listinfo/ipsec
>
>
>
>
>
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email