Internet-Draft draft-ietf-bess-secure-evpn-01.txt is now available. It is a
work item of the BGP Enabled ServiceS (BESS) WG of the IETF.
Title: Secure EVPN
Authors: Ali Sajassi
Ayan Banerjee
Sameer Thoria
David Carrel
Brian Weis
John Drake
Name: draft-ietf-bess-secure-evpn-01.txt
Pages: 37
Dates: 2024-10-21
Abstract:
The applications of EVPN-based solutions (BGP MPLS-based Ethernet VPN
and Network Virtualization Overlay Solution using EVPN) have become
pervasive in Data Center, Service Provider, and Enterprise segments.
It is being used for fabric overlays and inter-site connectivity in
the Data Center market segment, for Layer-2, Layer-3, and IRB VPN
services in the Service Provider market segment, and for fabric
overlay and WAN connectivity in Enterprise networks. For Data Center
and Enterprise applications, there is a need to provide inter-site
and WAN connectivity over public Internet in a secured manner with
same level of privacy, integrity, and authentication for tenant's
traffic as IPsec tunneling using IKEv2. This document presents a
solution where BGP point-to-multipoint signaling is leveraged for key
and policy exchange among PE devices to create private pair-wise
IPsec Security Associations without IKEv2 point-to-point signaling or
any other direct peer-to-peer session establishment messages.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-bess-secure-evpn/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-bess-secure-evpn-01
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-bess-secure-evpn-01
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
BESS mailing list -- bess@ietf.org
To unsubscribe send an email to bess-le...@ietf.org
