Re: Internet Draft: RadSec - RADIUS over TCP+TLS

Victor Gamov <vit@lipetsk.ru> Sat, 04 August 2007 13:28 UTC

Envelope-to: radiusext-data@psg.com
Delivery-date: Sat, 04 Aug 2007 13:29:34 +0000
DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding:sender; b=lHYwzYAal40+ItqCsvpiDHT9gJsjdZZnOh/y+ZLVYuhUNXCcSyaxqvjAayyFxqur6saCR0sFyHSsQviH5Z8gq5fCm2Evst0KhQn/AoNGc4djU+nyoTa2uJXCp5IPa32YZDjboSfOnjgxGACXwpz/LGgHxhBe+TfOPElP5Ep3tcI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding:sender; b=VPkTvXOLfnczdz/igyA6stQy8pjO7x088LmpYa/CyM+YVxN1HSfJGRcftod5v+/fJM+YK4I2A77uciWiqQICeOSV+soD8HOiLcwzQJsDh6tTqomz/7q/A5Po/Ym9edWyehbxKkJFrCMksWkwlpht+Tn/sWflOA1T3JVYVN9jqqE=
Message-ID: <46B47F05.4020606@lipetsk.ru>
Date: Sat, 04 Aug 2007 17:28:37 +0400
From: Victor Gamov <vit@lipetsk.ru>
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: radiusext@ops.ietf.org
Subject: Re: Internet Draft: RadSec - RADIUS over TCP+TLS
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit

Stefan Winter wrote:
> Hello!
> 
> My name is Stefan Winter of the Luxembourg Research and Education Network.
> Together with Stig Venaas (Norwegian REN) and Mike McCauley from Open Systems 
> Consultants (creators of the Radiator RADIUS server) I have created an 
> internet draft describing two implementations of a transport profile for 
> RADIUS that transports the RADIUS payload over a TCP+TLS link.

(sorry for late response)

Hi Stefan!

I work with RADIUS protocol about 10 years and question "why UDP not 
TCP" is the biggest question without answer for me (yes I red RFC286 
part 2.4).

When I thinking about "UDP vs TCP" I found many arguments for TCP 
advantages like produced by your draft so I agree with it.

I think that this draft is a good start point to think about new 
transport for RADIUS. (and may be to prepare new version of this simply 
and nice protocol without current problems even)

-- 
CU,
Victor Gamov

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Internet Draft: RadSec - RADIUS over TCP+TLS Stefan Winter
Re: Internet Draft: RadSec - RADIUS over TCP+TLS Victor Gamov