Re: [Softwires] IPsec protection for configured IPv6-in-IPv4 tunnels
Pekka Savola <pekkas@netcore.fi> Fri, 20 October 2006 05:56 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1GanN4-0001ey-2T; Fri, 20 Oct 2006 01:56:42 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GanN3-0001es-KB for softwires@ietf.org; Fri, 20 Oct 2006 01:56:41 -0400
Received: from eunet-gw.ipv6.netcore.fi ([2001:670:86:3001::1] helo=netcore.fi) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GanN3-0007kp-0w for softwires@ietf.org; Fri, 20 Oct 2006 01:56:41 -0400
Received: from localhost (pekkas@localhost) by netcore.fi (8.12.11.20060614/8.12.11) with ESMTP id k9K5uKHE019876; Fri, 20 Oct 2006 08:56:20 +0300
Date: Fri, 20 Oct 2006 08:56:20 +0300
From: Pekka Savola <pekkas@netcore.fi>
To: Florent Parent <florent.parent@gmail.com>
Subject: Re: [Softwires] IPsec protection for configured IPv6-in-IPv4 tunnels
In-Reply-To: <6584B32D98E8A33AFAC35695@blues.local>
Message-ID: <Pine.LNX.4.64.0610200855590.19848@netcore.fi>
References: <Pine.LNX.4.64.0610111137560.23128@netcore.fi> <6584B32D98E8A33AFAC35695@blues.local>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
X-Virus-Scanned: ClamAV 0.88.4/2051/Thu Oct 19 22:27:43 2006 on otso.netcore.fi
X-Virus-Status: Clean
X-Spam-Status: No, score=-2.3 required=5.0 tests=AWL, BAYES_00, NO_RELAYS autolearn=ham version=3.1.4
X-Spam-Checker-Version: SpamAssassin 3.1.4 (2006-07-25) on otso.netcore.fi
X-Spam-Score: -2.8 (--)
X-Scan-Signature: c83ccb5cc10e751496398f1233ca9c3a
Cc: softwires@ietf.org
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/softwires>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
Errors-To: softwires-bounces@ietf.org
Hi, On Fri, 20 Oct 2006, Florent Parent wrote: > A bit late, but... > > Since L2TP is used in the current discussion, much of what is discussed in > RFC3193 (Securing L2TP using IPsec) can be applied, specially in the hub and > spoke scenario. IPsec transport mode is used since L2TP/PPP already provide a > tunnel link (as the v6ops-ipsec-tunnels also mentions). Indeed. > I do not see any comments/changes that would be applicable to > v6ops-ipsec-tunnels at this point. Thanks! Pekka > --On 11 octobre 2006 11:41:08 +0300 Pekka Savola <pekkas@netcore.fi> wrote: > >> FYI, >> >> Some softwires docs seem to be referring to this document. It has been >> significantly revised. >> >> Personally, it is not clear to me how this applies to softwires and what >> softwire-specific extensions or specification softwires WG might have to >> do. >> >> If you have comments on the draft, as the authors, I'd like to ask to >> send feedback by Oct 18 (in a week) so that we may consider whether the >> draft needs to revised prior to the IETF. >> >> The tools WG page (including diffs etc.) is: >> >> http://tools.ietf.org/wg/v6ops/draft-ietf-v6ops-ipsec-tunnels/ >> >> ---------- Forwarded message ---------- >> Date: Tue, 10 Oct 2006 15:50:02 -0400 >> From: Internet-Drafts@ietf.org >> To: i-d-announce@ietf.org >> Cc: v6ops@ops.ietf.org >> Subject: I-D ACTION:draft-ietf-v6ops-ipsec-tunnels-03.txt >> >> A New Internet-Draft is available from the on-line Internet-Drafts >> directories. >> This draft is a work item of the IPv6 Operations Working Group of the >> IETF. >> >> Title : Using IPsec to Secure IPv6-in-IPv4 Tunnels >> Author(s) : P. Savola, et al. >> Filename : draft-ietf-v6ops-ipsec-tunnels-03.txt >> Pages : 22 >> Date : 2006-10-10 >> >> This document gives guidance on securing manually configured IPv6-in- >> IPv4 tunnels using IPsec. No additional protocol extensions are >> described beyond those available with the IPsec framework. >> >> A URL for this Internet-Draft is: >> http://www.ietf.org/internet-drafts/draft-ietf-v6ops-ipsec-tunnels-03.txt >> >> To remove yourself from the I-D Announcement list, send a message to >> i-d-announce-request@ietf.org with the word unsubscribe in the body of >> the message. >> You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce >> to change your subscription settings. >> >> Internet-Drafts are also available by anonymous FTP. Login with the >> username "anonymous" and a password of your e-mail address. After >> logging in, type "cd internet-drafts" and then >> "get draft-ietf-v6ops-ipsec-tunnels-03.txt". >> >> A list of Internet-Drafts directories can be found in >> http://www.ietf.org/shadow.html >> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt >> >> Internet-Drafts can also be obtained by e-mail. >> >> Send a message to: >> mailserv@ietf.org. >> In the body type: >> "FILE /internet-drafts/draft-ietf-v6ops-ipsec-tunnels-03.txt". >> >> NOTE: The mail server at ietf.org can return the document in >> MIME-encoded form by using the "mpack" utility. To use this >> feature, insert the command "ENCODING mime" before the "FILE" >> command. To decode the response(s), you will need "munpack" or >> a MIME-compliant mail reader. Different MIME-compliant mail readers >> exhibit different behavior, especially when dealing with >> "multipart" MIME messages (i.e. documents which have been split >> up into multiple messages), so check your local documentation on >> how to manipulate these messages. >> >> Below is the data which will enable a MIME compliant mail reader >> implementation to automatically retrieve the ASCII version of the >> Internet-Draft. >> >> _______________________________________________ >> Softwires mailing list >> Softwires@ietf.org >> https://www1.ietf.org/mailman/listinfo/softwires > > > > -- Pekka Savola "You each name yourselves king, yet the Netcore Oy kingdom bleeds." Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings _______________________________________________ Softwires mailing list Softwires@ietf.org https://www1.ietf.org/mailman/listinfo/softwires
- [Softwires] IPsec protection for configured IPv6-… Pekka Savola
- Re: [Softwires] IPsec protection for configured I… Florent Parent
- Re: [Softwires] IPsec protection for configured I… Pekka Savola