IETF Logo Mail Archive

[lisp] Wireguard and LISP [Was: Virtual meeting]

Albert Cabellos <albert.cabellos@gmail.com> Mon, 23 March 2020 12:06 UTC

Return-Path: <albert.cabellos@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D6ADE3A0860 for <lisp@ietfa.amsl.com>; Mon, 23 Mar 2020 05:06:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VTdec_E-WbAc for <lisp@ietfa.amsl.com>; Mon, 23 Mar 2020 05:06:23 -0700 (PDT)
Received: from mail-lf1-x135.google.com (mail-lf1-x135.google.com [IPv6:2a00:1450:4864:20::135]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99E883A0858 for <lisp@ietf.org>; Mon, 23 Mar 2020 05:06:22 -0700 (PDT)
Received: by mail-lf1-x135.google.com with SMTP id v4so6313000lfo.12 for <lisp@ietf.org>; Mon, 23 Mar 2020 05:06:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=QlKoHGjM/1Ht1Tc2K8LcQPGad7T8HuHNklRrfGC+oco=; b=HhLqv6hgCOHzchXPeRz/ACeFKM9ApztHJbsgc7a0cHX33mCGUEpShqPQUIL2N+gJ3+ pFU9mKTRBDhJWhsJx9fMsi+YPEKWR1GbUGvq0sI2xnviQWVm/UPdEdfQt9WJD+b25Djl sCpNlGojXTYzHquFu8ZSRBY6JbjHwBU2PuCd9ca1KE0mEWtq4dFXnELdlBqtwMyHOgIf uY/S1gpWWHpzRWB40PACwydBEdZHfU6bW+qiOJr1bOSKKvwqasEyRb2kNfeGCpDCgfOj /9XOnyqR05c/FsIayEAnhYNuJfPTJvZpo+OmZ6IMjgAKTxvwKsA2/LbmBfGHe+66/2wr rTUA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=QlKoHGjM/1Ht1Tc2K8LcQPGad7T8HuHNklRrfGC+oco=; b=amncLr5YCRoO7kBr7zl8d/C6mwl+ZN0ah1MxE4CKOEZ7+SANGe2AJwGYOH0t4w2bZp RZ5QemeiLCb38KZ8EJgw4Cwh5twzdfq6ELix6UhR47DDrhA5gDQoMjY/ac5Cc7dQ0Eu0 uFIK4Rg0Oh9bSMB+Y3eA1Lgn4jkuISuVcfZeCxz9z/sWTkAqIU/bGDdCNszF/BWkb/P9 PU2NNIY5zzEEygMDEmGb1189tHRsXn5AJUPJ1/kvGFkFnxwDq6RbZziCo+AqtStBt2EQ QzmBOOfNI6+/b8BR1nglM5SnRCXN1sLGVlqmqXt9chI0JYepKzYf2b8e3TXTygSQYZIN kdvA==
X-Gm-Message-State: ANhLgQ2XfNm+qRpMZp17v5iwuDRluc84X/UzZUkxO7W2BAxx6UMxs4Or jK/tkF7qCuHl9vH3bCN04FUCxBrczSjAQy0gdLMypbxjTMU=
X-Google-Smtp-Source: ADFU+vtFl3tald3Zl1RZ7aWUjLTgGXPvH0GJMJRvHKOeuTR/fEhMGIrjNAVok/tcMEuGOe8R/UiFRkYRl6UoIbRFe/A=
X-Received: by 2002:a19:6101:: with SMTP id v1mr12982760lfb.56.1584965180382; Mon, 23 Mar 2020 05:06:20 -0700 (PDT)
MIME-Version: 1.0
References: <bf751274-3d10-4675-40ff-0876b968ec58@joelhalpern.com>
In-Reply-To: <bf751274-3d10-4675-40ff-0876b968ec58@joelhalpern.com>
From: Albert Cabellos <albert.cabellos@gmail.com>
Date: Mon, 23 Mar 2020 13:06:08 +0100
Message-ID: <CAGE_Qexud9SVudjSxYAEADbfKL9M9QfCt4_c2GhQHO8fVbhV+A@mail.gmail.com>
To: "lisp@ietf.org list" <lisp@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008ee15705a184765b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/An4lhmJb9yGbzUyWnB0hR15NHWc>
Subject: [lisp] Wireguard and LISP [Was: Virtual meeting]
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2020 12:06:40 -0000

Hi all

I´d like to discuss the following topic.

We have been prototyping a LISP-based control plane for Wireguard [1] using
the Open Overlay Router implementation [2].

Wireguard is disrupting the field of VPNs by providing an easy-to-use,
high-performance and mobility-aware VPNs. Wiregard aims to replace
traditional IPsec and TLS-based VPNs, and it is open-source and available
in the Linux Kernel.

Wireguard does not have a control-plane, this means that Wireguard nodes
need to be manually configured before being able to exchange packets.
Manual configuration typically involved provisioning public keys using
out-of-band mechanisms. In this context, we have architected and prototyped
a control-plane for Wireguard using LISP, this enables automatic and secure
retrieval of public keys using LISP.

This raises -hopefully- interesting questions, how should LISP support
multiple data-planes? In this context Wireguard can be seen just as another
data-plane. Additionally, Wiregard provides a secure data-plane, can we
learn something from them?

Albert

--

[1] https://www.wireguard.com
[2] https://openoverlayrouter.org

---------- Forwarded message ---------
From: Joel M. Halpern <jmh@joelhalpern.com>
Date: Tue, Mar 10, 2020 at 10:44 PM
Subject: [lisp] Virtual meeting
To: lisp@ietf.org <lisp@ietf.org>


Vancouver has been cancelled.
We have several ways we can hold a virtual interim.  (The chairs have a
webex available, and Fabio has offered one.)

I understand that folks want to present their work.
But what I am looking for if we are going to get folks together is
actual engagement on the list.  Indication that there are things worth
discussing.

Yours,
Joel

_______________________________________________
lisp mailing list
lisp@ietf.org
https://www.ietf.org/mailman/listinfo/lisp

v2.23.0 | Report a Bug | By Email