Hi Paul,
> On Wed, 19 Oct 2022, Valery Smyslov wrote:
>
> >> Requesting to install 1 million Child SA's until the remote server falls
> >> over.
> >> Perhaps less extremely, to contain the number of resources a sysadmin
> >> allocates to a specific "multi CPU" tunnel.
> >
> > I still fail to und
Lars Eggert has entered the following ballot position for
draft-ietf-ipsecme-mib-iptfs-09: Discuss
When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)
Please refer to
http
Joel, thank you for your review. I have entered a Discuss ballot for this
document based on my own review.
Lars
> On 2022-9-22, at 1:50, Joel Halpern via Datatracker wrote:
>
> Reviewer: Joel Halpern
> Review result: Almost Ready
>
> I am the assigned Gen-ART reviewer for this draft. The Gen
Hello IPSEC,
We've just put out an extensively revised version of our RISAV proposal
(the I stands for IPsec). We'd like to start getting feedback from the
IPsec experts. We're also hoping to present this idea and solicit feedback
at IETF 115.
This is an early stage proposal with a lot of open
I don't understand how "transport mode" can work for non-originated
packets; for IPv6, inserting random headers along the path would violate
8200.
On Thu, Oct 20, 2022 at 7:23 AM Ben Schwartz wrote:
> Hello IPSEC,
>
> We've just put out an extensively revised version of our RISAV proposal
> (the
The RISAV-AH header is inserted as the packet exits the source AS, and
removed as the packet enters the destination AS. Thus, it has the same net
effect as an ESP tunnel, and IMHO should not be viewed as a violation of
RFC 8200.
Where this gets interesting is ICMP responses from intermediary rout
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the IP Security Maintenance and Extensions WG of
the IETF.
Title : Definitions of Managed Objects for IP Traffic Flow
Security
Authors : Don Fedyk
Zaheduzzaman Sarker has entered the following ballot position for
draft-ietf-ipsecme-mib-iptfs-10: No Objection
When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)
Please r
Hi Russ,
Many thanks for the review of our document. Please see our comments inline
below. The updated version of the draft is available here:
https://github.com/post-quantum/ietf-pq-ikev2/blob/master/draft-ietf-ipsecme-ikev2-multiple-ke-00.xml
Best regards,
CJ and Valery
On Fri, 14 Oct 2022 at
