[IPsec] I-D Action:draft-ietf-ipsecme-ipsecha-protocol-02.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the IP Security Maintenance and Extensions Working Group of the IETF. Title : Protocol Support for High Availability of IKEv2/IPsec Author(s) : R. Jenwar,

[IPsec] I-D Action:draft-ietf-ipsecme-failure-detection-02.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the IP Security Maintenance and Extensions Working Group of the IETF. Title : A Quick Crash Detection Method for IKE Author(s) : Y. Nir, et al. Fil

[IPsec] Issue 202 [was Issue #194] - Security Considerations should discuss the threat

Hi Tero, Like I explained earlier, sharing the address-less QCD token is problematic in multiple practical network designs: - Stateless failover pairs (e.g. VRRP, HSRP, ..) - Load Balanced clusters - Anycast server clusters In general, QCD address-less token generation is dangerous in all the s