IETF Logo Mail Archive

[OPSEC] New Version Notification for draft-dugal-opsec-protect-control-plane-02

Rodney Dunn <rodunn@cisco.com> Tue, 23 February 2010 20:57 UTC

Return-Path: <rodunn@cisco.com>
X-Original-To: opsec@core3.amsl.com
Delivered-To: opsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C5DDF3A84F0 for <opsec@core3.amsl.com>; Tue, 23 Feb 2010 12:57:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PV6XW2tswH0e for <opsec@core3.amsl.com>; Tue, 23 Feb 2010 12:57:40 -0800 (PST)
Received: from av-tac-rtp.cisco.com (hen.cisco.com [64.102.19.198]) by core3.amsl.com (Postfix) with ESMTP id 025A03A72CE for <opsec@ietf.org>; Tue, 23 Feb 2010 12:57:39 -0800 (PST)
X-TACSUNS: Virus Scanned
Received: from rooster.cisco.com (localhost.cisco.com [127.0.0.1]) by av-tac-rtp.cisco.com (8.13.8+Sun/8.13.8) with ESMTP id o1NKxgO5016813; Tue, 23 Feb 2010 15:59:42 -0500 (EST)
Received: from dhcp-64-102-221-233.cisco.com (dhcp-64-102-221-233.cisco.com [64.102.221.233]) by rooster.cisco.com (8.13.8+Sun/8.13.8) with ESMTP id o1NKxgNv001203; Tue, 23 Feb 2010 15:59:42 -0500 (EST)
Message-ID: <4B8441BE.1010803@cisco.com>
Date: Tue, 23 Feb 2010 15:59:42 -0500
From: Rodney Dunn <rodunn@cisco.com>
Organization: Cisco Systems Inc.
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1.7) Gecko/20100111 Thunderbird/3.0.1
MIME-Version: 1.0
To: opsec@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: draft-dugal-opsec-protect-control-plane@tools.ietf.org
Subject: [OPSEC] New Version Notification for draft-dugal-opsec-protect-control-plane-02
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: rodunn@cisco.com
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/opsec>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Feb 2010 20:57:40 -0000

Thanks for all the feedback that has been provided on the document so far.

We have published a revision -02 that incorporates the feedback both on 
and off the list.

Rodney

http://tools.ietf.org/html/draft-dugal-opsec-protect-control-plane-02

A new version of I-D, draft-dugal-opsec-protect-control-plane-02.txt has 
been successfuly submitted by Rodney Dunn and posted to the IETF repository.

Filename:	 draft-dugal-opsec-protect-control-plane
Revision:	 02
Title:		 Protecting The Router Control Plane
Creation_date:	 2010-02-23
WG ID:		 Independent Submission
Number_of_pages: 13

Abstract:
This memo provides a method for protecting a router's control plane
from undesired or malicious traffic.  In this approach, all
legitimate control plane traffic is identifed.  Once legitimate
traffic has been identified, a filter is deployed on the router's
forwarding plane.  That filter prevents traffic not specifically
identified as legitimate from reaching the router's control plane.

v2.23.0 | Report a Bug | By Email