Re: [lisp] Wireguard and LISP [Was: Virtual meeting]

"Marc Portoles Comeras (mportole)" <mportole@cisco.com> Tue, 24 March 2020 17:31 UTC

IronPort-PHdr: 9a23:NJYXbB1Xj0vnjuq2smDT+zVfbzU7u7jyIg8e44YmjLQLaKm44pD+JxKGt+51ggrPWoPWo7JfhuzavrqoeFRI4I3J8RVgOIdJSwdDjMwXmwI6B8vQDFX8NuLtayESF8VZX1gj9Ha+YgBY
From: "Marc Portoles Comeras (mportole)" <mportole@cisco.com>
To: Dino Farinacci <farinacci@gmail.com>
CC: Albert Cabellos <albert.cabellos@gmail.com>, "lisp@ietf.org list" <lisp@ietf.org>
Thread-Topic: [lisp] Wireguard and LISP [Was: Virtual meeting]
Thread-Index: AQHWAQu8bFduMrlC/Uypn+oU1M/QtahWtamA///7/ICAASQagP//tseA
Date: Tue, 24 Mar 2020 17:30:59 +0000
Message-ID: <8A1B78BF-7677-4D8B-9D9B-0741BD037F46@cisco.com>
References: <95B658E8-B629-4E44-AB99-E9E406D11FF1@cisco.com> <39E32C9F-28FF-44B4-BE28-255199CEC968@gmail.com>
In-Reply-To: <39E32C9F-28FF-44B4-BE28-255199CEC968@gmail.com>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/16.35.20030802
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
Content-Type: text/plain; charset="utf-8"
Content-ID: <DAF8C5F03C5CF94881C74220B036A173@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: d8eb9973-c621-466b-6256-08d7d0191e70
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Mar 2020 17:30:59.8236 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ggl9UT7q3rPW6akhXfLibmopSclwXRQpY1tN07SCECNR4vNjdZEbs4GBi/WpBySRo3MQ8KKAfhCxJveADyafcQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3398
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.14, xch-aln-004.cisco.com
X-Outbound-Node: alln-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/NBOZH4xYOhYXaBCMS-cokZSk-lw>
Subject: Re: [lisp] Wireguard and LISP [Was: Virtual meeting]
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2020 17:31:07 -0000

> Well since Wireguard can support multiple encapsulations, it could add support for LISP encapsulation fairly easy. And then they get segmentation with it and it can map its style of VPNs to draft-ietf-lisp-vpn.

Do you mean using lisp encapsulation as part of the encrypted payload? Or as an alternative to the wireguard header?
The wireguard whitepaper seems to establish the dataplane header very specifically, but since it seems to assume that the payload is an ip packet, a lisp packet could work there.

Thanks,
Marc

On 3/24/20, 7:53 AM, "Dino Farinacci" <farinacci@gmail.com> wrote:

Marc,

> On Mar 23, 2020, at 9:27 PM, Marc Portoles Comeras (mportole) <mportole@cisco.com> wrote:
> 
> Have you given any thought to supporting segmentation when using wireguard encapsulation in the  dataplane? Could the Receiver field in the wireguard header be used for that and linked somehow to LISP IIDs?

Well since Wireguard can support multiple encapsulations, it could add support for LISP encapsulation fairly easy. And then they get segmentation with it and it can map its style of VPNs to draft-ietf-lisp-vpn. 

Dino

[lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Alberto Rodriguez Natal (natal)
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel Halpern Direct
Re: [lisp] Virtual meeting Victor Moreno (vimoreno)
Re: [lisp] Virtual meeting Alberto Rodriguez Natal (natal)
[lisp] Wireguard and LISP [Was: Virtual meeting] Albert Cabellos
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Dino Farinacci
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Marc Portoles Comeras (mportole)
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Dino Farinacci
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Marc Portoles Comeras (mportole)
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Dino Farinacci
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Jordi Paillissé Vilanova
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Dino Farinacci
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Jordi Paillissé Vilanova
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Dino Farinacci
Re: [lisp] Wireguard and LISP [Was: Virtual meeti… Jordi Paillissé Vilanova
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel M. Halpern
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Joel Halpern Direct
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Alberto Rodriguez Natal (natal)
Re: [lisp] Virtual meeting Dino Farinacci
Re: [lisp] Virtual meeting Prakash Jain (prakjain)
Re: [lisp] Virtual meeting Joel M. Halpern