Re: [OSPF] OSPF Digest, Vol 68, Issue 8
Acee Lindem <acee.lindem@ericsson.com> Sat, 29 October 2011 17:36 UTC
Return-Path: <acee.lindem@ericsson.com>
X-Original-To: ospf@ietfa.amsl.com
Delivered-To: ospf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 867CB21F85D1 for <ospf@ietfa.amsl.com>; Sat, 29 Oct 2011 10:36:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.488
X-Spam-Level:
X-Spam-Status: No, score=-6.488 tagged_above=-999 required=5 tests=[AWL=0.111, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KR4JirYaTK0V for <ospf@ietfa.amsl.com>; Sat, 29 Oct 2011 10:35:59 -0700 (PDT)
Received: from imr4.ericy.com (imr4.ericy.com [198.24.6.9]) by ietfa.amsl.com (Postfix) with ESMTP id 9E80F21F85C7 for <ospf@ietf.org>; Sat, 29 Oct 2011 10:35:59 -0700 (PDT)
Received: from eusaamw0707.eamcs.ericsson.se ([147.117.20.32]) by imr4.ericy.com (8.14.3/8.14.3/Debian-9.1ubuntu1) with ESMTP id p9THZtIC015852; Sat, 29 Oct 2011 12:35:56 -0500
Received: from EUSAACMS0702.eamcs.ericsson.se ([169.254.2.215]) by eusaamw0707.eamcs.ericsson.se ([147.117.20.32]) with mapi; Sat, 29 Oct 2011 13:35:50 -0400
From: Acee Lindem <acee.lindem@ericsson.com>
To: thiruma valavan <thiruma.thirug@gmail.com>
Date: Sat, 29 Oct 2011 13:35:47 -0400
Thread-Topic: [OSPF] OSPF Digest, Vol 68, Issue 8
Thread-Index: AcyWYTLohJ+jrzTQQ5OAmV7W/NXpvw==
Message-ID: <2EE3C4F7-25D0-4747-9966-1DFBC9CEF86A@ericsson.com>
References: <mailman.62.1319742006.13959.ospf@ietf.org> <CAAY1OxEGVRXNHvNE5TCQ+E1RMO5a+oHs0mPcqxm7NpCc2HGMRA@mail.gmail.com>
In-Reply-To: <CAAY1OxEGVRXNHvNE5TCQ+E1RMO5a+oHs0mPcqxm7NpCc2HGMRA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "ospf@ietf.org" <ospf@ietf.org>
Subject: Re: [OSPF] OSPF Digest, Vol 68, Issue 8
X-BeenThere: ospf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: The Official IETF OSPG WG Mailing List <ospf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ospf>, <mailto:ospf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ospf>
List-Post: <mailto:ospf@ietf.org>
List-Help: <mailto:ospf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ospf>, <mailto:ospf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Oct 2011 17:36:00 -0000
Hi Thiru, You are not precluded from using the OSPFv2 Instance ID for this purpose. However, we already have RFC 5185 to allow a single interface to be in multiple areas (note that no secondary IP address is necessary): http://www.rfc-editor.org/rfc/rfc5185.txt The primary application is supporting multiple OSPF instances using the same link. One application is OSPF Transport Instance: http://www.ietf.org/id/draft-ietf-ospf-transport-instance-07.txt Thanks, Acee On Oct 29, 2011, at 1:04 PM, thiruma valavan wrote: Hi OSPF group members, Is this the objective of using Instance Id in OSPFv2. Instance id will be used If interface having more than one addresses, so we need to configure different subnets in router interface (Using secondary address cli command). So we can connect multiple areas on single link, No need different physical connection for each area. Thanks, Thiru On Fri, Oct 28, 2011 at 12:30 AM, <ospf-request@ietf.org<mailto:ospf-request@ietf.org>> wrote: If you have received this digest without all the individual message attachments you will need to update your digest options in your list subscription. To do so, go to https://www.ietf.org/mailman/listinfo/ospf Click the 'Unsubscribe or edit options' button, log in, and set "Get MIME or Plain Text Digests?" to MIME. You can set this option globally for all the list digests you receive at this point. Send OSPF mailing list submissions to ospf@ietf.org<mailto:ospf@ietf.org> To subscribe or unsubscribe via the World Wide Web, visit https://www.ietf.org/mailman/listinfo/ospf or, via email, send a message with subject or body 'help' to ospf-request@ietf.org<mailto:ospf-request@ietf.org> You can reach the person managing the list at ospf-owner@ietf.org<mailto:ospf-owner@ietf.org> When replying, please edit your Subject line so it is more specific than "Re: Contents of OSPF digest..." Today's Topics: 1. New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt (Acee Lindem) 2. Re: New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt (Acee Lindem) ---------------------------------------------------------------------- Message: 1 Date: Wed, 26 Oct 2011 19:48:42 -0400 From: Acee Lindem <acee.lindem@ericsson.com<mailto:acee.lindem@ericsson.com>> To: OSPF List <ospf@ietf.org<mailto:ospf@ietf.org>> Subject: [OSPF] New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt Message-ID: <21C419E2-D51A-40FD-816B-4DC3D2BD98AB@ericsson.com<mailto:21C419E2-D51A-40FD-816B-4DC3D2BD98AB@ericsson.com>> Content-Type: text/plain; charset="us-ascii" This version includes changes in response to the external reviews that have taken place since we completed WG last call. A few things have been clarified and the following two items have been added: 1. Mitigation of Cross Protocol Attacks by appending a protocol specific byte to the key. This will prevent replay attacks when the same key is used by multiple protocols (and the sets of valid input packets intercept). See sections 4.4 and 4.5. 2. Recommendations for authentication key selection have been added to the "Security Considerations". See section 6. Links to be the new version and a nicely annotated diff with the previous version are included in the forwarded E-mail below. Thanks, Acee Begin forwarded message: From: "internet-drafts@ietf.org<mailto:internet-drafts@ietf.org><mailto:internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>" <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org><mailto:internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>> Date: October 26, 2011 6:19:35 PM EDT To: "ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org><mailto:ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org>>" <ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org><mailto:ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org>>>, "draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org><mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org>>" <draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org><mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org>>>, "stbryant@cisco.com<mailto:stbryant@cisco.com><mailto:stbryant@cisco.com<mailto:stbryant@cisco.com>>" <stbryant@cisco.com<mailto:stbryant@cisco.com><mailto:stbryant@cisco.com<mailto:stbryant@cisco.com>>> Subject: New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt New version (-08) has been submitted for draft-ietf-ospf-auth-trailer-ospfv3-08.txt. http://www.ietf.org/internet-drafts/draft-ietf-ospf-auth-trailer-ospfv3-08.txt Diff from previous version: http://tools.ietf.org/rfcdiff?url2=draft-ietf-ospf-auth-trailer-ospfv3-08 IETF Secretariat. ------------------------------ Message: 2 Date: Wed, 26 Oct 2011 19:53:33 -0400 From: Acee Lindem <acee.lindem@ericsson.com<mailto:acee.lindem@ericsson.com>> Cc: OSPF List <ospf@ietf.org<mailto:ospf@ietf.org>> Subject: Re: [OSPF] New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt Message-ID: <0CE91E74-8EFF-45FE-B241-BF0012B5E0F3@ericsson.com<mailto:0CE91E74-8EFF-45FE-B241-BF0012B5E0F3@ericsson.com>> Content-Type: text/plain; charset="us-ascii" Of course, I meant "intersect" rather than "intercept" below. In other words, a packet from one protocol could potentially also represent a valid packet in another protocol and be replayed. Thanks, Acee On Oct 26, 2011, at 7:48 PM, Acee Lindem wrote: > This version includes changes in response to the external reviews that have taken place since we completed WG last call. A few things have been clarified and the following two items have been added: > > 1. Mitigation of Cross Protocol Attacks by appending a protocol specific byte to the key. This will prevent replay attacks when the same key is used by multiple protocols (and the sets of valid input packets intercept). See sections 4.4 and 4.5. > > 2. Recommendations for authentication key selection have been added to the "Security Considerations". See section 6. > > Links to be the new version and a nicely annotated diff with the previous version are included in the forwarded E-mail below. > > Thanks, > Acee > > > > > Begin forwarded message: > > From: "internet-drafts@ietf.org<mailto:internet-drafts@ietf.org><mailto:internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>" <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org><mailto:internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>> > Date: October 26, 2011 6:19:35 PM EDT > To: "ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org><mailto:ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org>>" <ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org><mailto:ospf-chairs@tools.ietf.org<mailto:ospf-chairs@tools.ietf.org>>>, "draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org><mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org>>" <draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org><mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org<mailto:draft-ietf-ospf-auth-trailer-ospfv3@tools.ietf.org>>>, "stbryant@cisco.com<mailto:stbryant@cisco.com><mailto:stbryant@cisco.com<mailto:stbryant@cisco.com>>" <stbryant@cisco.com<mailto:stbryant@cisco.com><mailto:stbryant@cisco.com<mailto:stbryant@cisco.com>>> > Subject: New Version Notification - draft-ietf-ospf-auth-trailer-ospfv3-08.txt > > New version (-08) has been submitted for draft-ietf-ospf-auth-trailer-ospfv3-08.txt. > http://www.ietf.org/internet-drafts/draft-ietf-ospf-auth-trailer-ospfv3-08.txt > > > Diff from previous version: > http://tools.ietf.org/rfcdiff?url2=draft-ietf-ospf-auth-trailer-ospfv3-08 > > IETF Secretariat. > > _______________________________________________ > OSPF mailing list > OSPF@ietf.org<mailto:OSPF@ietf.org> > https://www.ietf.org/mailman/listinfo/ospf ------------------------------ _______________________________________________ OSPF mailing list OSPF@ietf.org<mailto:OSPF@ietf.org> https://www.ietf.org/mailman/listinfo/ospf End of OSPF Digest, Vol 68, Issue 8 *********************************** _______________________________________________ OSPF mailing list OSPF@ietf.org<mailto:OSPF@ietf.org> https://www.ietf.org/mailman/listinfo/ospf
- Re: [OSPF] OSPF Digest, Vol 68, Issue 8 thiruma valavan
- Re: [OSPF] OSPF Digest, Vol 68, Issue 8 Acee Lindem