IETF Logo Mail Archive

Re: [netlmm] Issue: Auth Option support

Christian Vogt <christian.vogt@nomadiclab.com> Thu, 09 August 2007 07:33 UTC

Return-path: <netlmm-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IJ2W6-0001Fp-Ep; Thu, 09 Aug 2007 03:33:10 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IJ2W5-0001Fk-4t for netlmm@ietf.org; Thu, 09 Aug 2007 03:33:09 -0400
Received: from n2.nomadiclab.com ([193.234.219.2]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IJ2W3-0003GW-MV for netlmm@ietf.org; Thu, 09 Aug 2007 03:33:09 -0400
Received: from n2.nomadiclab.com (localhost [127.0.0.1]) by n2.nomadiclab.com (Postfix) with ESMTP id 53EEB212DEC; Thu, 9 Aug 2007 10:33:06 +0300 (EEST)
Received: from [127.0.0.1] (localhost [127.0.0.1]) by n2.nomadiclab.com (Postfix) with ESMTP id 1ED75212DE1; Thu, 9 Aug 2007 10:33:06 +0300 (EEST)
Message-ID: <46BAC331.8070706@nomadiclab.com>
Date: Thu, 09 Aug 2007 10:33:05 +0300
From: Christian Vogt <christian.vogt@nomadiclab.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.12) Gecko/20070604 Thunderbird/1.5.0.12 Mnenhy/0.7.5.0
MIME-Version: 1.0
To: Sri Gundavelli <sgundave@cisco.com>, 'Alper Yegin' <alper.yegin@yegin.org>
Subject: Re: [netlmm] Issue: Auth Option support
References: <Pine.GSO.4.63.0708070000100.13701@irp-view13.cisco.com> <0MKp8S-1IIKcu1WNe-0005rE@mrelay.perfora.net> <01d301c7d95b$8e18a6a0$c842150a@amer.cisco.com>
In-Reply-To: <01d301c7d95b$8e18a6a0$c842150a@amer.cisco.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV using ClamSMTP
X-Spam-Score: 0.0 (/)
X-Scan-Signature: d6b246023072368de71562c0ab503126
Cc: netlmm@ietf.org
X-BeenThere: netlmm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: NETLMM working group discussion list <netlmm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/netlmm>, <mailto:netlmm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/netlmm>
List-Post: <mailto:netlmm@ietf.org>
List-Help: <mailto:netlmm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/netlmm>, <mailto:netlmm-request@ietf.org?subject=subscribe>
Errors-To: netlmm-bounces@ietf.org

>>> But, as most people agreed and as supported by Jari, this can
>> My understanding was the opposite, especially about Jari's statement.
> 
> Ok. May be I misread the conclusion. I will let other clarify the
> summary of the discussion on this topic in chicago.

I opened up this issue in the tracker and will leave it open until we
have reached consensus on it.  I encourage folks to send their opinion.

My personal opinion is that the implementation of IPsec authentication
should be mandatory, while the use of it should be recommended.

This would ensure interoperability while leaving room for alternative
means for authentication.

It would also be in-line with C-MIPv6.  See section 5.1 in RFC 3775.

- Christian


_______________________________________________
netlmm mailing list
netlmm@ietf.org
https://www1.ietf.org/mailman/listinfo/netlmm

v2.23.0 | Report a Bug | By Email