From nobody Sun Nov 12 13:00:18 2017 Return-Path: X-Original-To: hipsec@ietf.org Delivered-To: hipsec@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B231E127011; Sun, 12 Nov 2017 13:00:09 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: internet-drafts@ietf.org To: Cc: hipsec@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.65.1 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <151052040964.30836.14644394065092777606@ietfa.amsl.com> Date: Sun, 12 Nov 2017 13:00:09 -0800 Archived-At: Subject: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-23.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Nov 2017 21:00:10 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol WG of the IETF. Title : Native NAT Traversal Mode for the Host Identity Protocol Authors : Ari Keranen Jan Melén Miika Komu Filename : draft-ietf-hip-native-nat-traversal-23.txt Pages : 60 Date : 2017-11-12 Abstract: This document specifies a new Network Address Translator (NAT) traversal mode for the Host Identity Protocol (HIP). The new mode is based on the Interactive Connectivity Establishment (ICE) methodology and UDP encapsulation of data and signaling traffic. The main difference from the previously specified modes is the use of HIP messages for all NAT traversal procedures. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-hip-native-nat-traversal-23 https://datatracker.ietf.org/doc/html/draft-ietf-hip-native-nat-traversal-23 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-native-nat-traversal-23 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Sun Nov 12 13:24:48 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B5D18126B7F for ; Sun, 12 Nov 2017 13:24:46 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iHwoUHjMeHug for ; Sun, 12 Nov 2017 13:24:45 -0800 (PST) Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D04511267BB for ; Sun, 12 Nov 2017 13:24:44 -0800 (PST) X-AuditID: c1b4fb25-d91ff700000020f7-80-5a08bc1aed6c Received: from ESESSHC013.ericsson.se (Unknown_Domain [153.88.183.57]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 66.BB.08439.A1CB80A5; Sun, 12 Nov 2017 22:24:43 +0100 (CET) Received: from [100.94.10.29] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.59) with Microsoft SMTP Server id 14.3.352.0; Sun, 12 Nov 2017 22:24:42 +0100 To: References: <151052040964.30836.14644394065092777606@ietfa.amsl.com> From: Miika Komu Organization: Ericsson AB Message-ID: <5041280f-0924-bbc6-687b-31d19c77f51c@ericsson.com> Date: Sun, 12 Nov 2017 23:24:39 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 MIME-Version: 1.0 In-Reply-To: <151052040964.30836.14644394065092777606@ietfa.amsl.com> Content-Type: text/plain; charset="utf-8"; format=flowed Content-Language: en-US Content-Transfer-Encoding: quoted-printable X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrELMWRmVeSWpSXmKPExsUyM2K7pa70Ho4ogxPTWS2mLprM7MDosWTJ T6YAxigum5TUnMyy1CJ9uwSujGtd89kLLkpU/Fq1mbWBcYNwFyMnh4SAiUTD5KvMXYxcHEIC hxklZndMZoNwVjFKHFr6ixGkSljAR+L1w02sILaIgKjElA+nmUFsIQEXiS93VzKB2GwCWhKr 7lwHi/MLSEpsaNgNZvMK2Et0L10P1ssioCpx/ultMFtUIELiefN7VogaQYmTM5+wgNicAq4S M9bdAutlFrCQmDn/PCOELS5x68l8JghbW2LZwtdANRxAN6hIXDwWPIFRcBaSSbOQdM9C0j0L SfcCRpZVjKLFqcVJuelGxnqpRZnJxcX5eXp5qSWbGIEhe3DLb9UdjJffOB5iFOBgVOLh5VjJ ESXEmlhWXJl7iFGCg1lJhNfvGXuUEG9KYmVValF+fFFpTmrxIUZpDhYlcV7HfRcihATSE0tS s1NTC1KLYLJMHJxSDYzhkfoOZ1gT/D9vXK655U/NeXGHlsrUU1firgTndBxe86d9g1KdgNbu gL2vuvt1ql7szpqnXvmpKXLNpapOlvPH8/Zd/lzI3JpjVaQ453TCybgG80sfTP7mtb8u8p7l /IKFN6Pvet+ZhTXPN3Yp69848e2A7pc14suFyy6/XMi8Q36qwLb8BReUWIozEg21mIuKEwFI kMmZVQIAAA== Archived-At: Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-23.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Nov 2017 21:24:47 -0000 FYI, the major changes in this version are: 4.12.3. Handling Conflicting SPI Values * a new way to handle conflicting SPIs by utilizing multiple relayed=20 candidates * this changed affected also sections 4.1, 4.2, 4.12.1, 5.13. 4.9. Mobility Handover Procedure: * the exchange of locators must be three way in order to avoid replay=20 attacks * clarified double jump Minor changes: 4.7.1. Minimal NAT Traversal Support: * clarified how mobility is supposed to work in this case 4.10. NAT Keepalives: * the Data Relay Client and Data Relay Server MUST employ only HIP=20 NOTIFY packets in order to keep the server reflexive candidates alive 5.10. Notify Packet Types: * A new error value: SERVER_REFLEXIVE_CANDIDATE_ALLOCATION_FAILED 5.13. PEER_PERMISSION Parameter * Additional port and address added because multiple server reflexive=20 candidates can be leased 6.2. Opportunistic Mode * Clarified that anycast and multicast are out of scope 7. IANA Considerations * Error values are listed also here Appendix D. Multihoming Considerations: * new section on future compatibility with possible multihoming extension= s * Some minor clarifications here and there On 11/12/2017 11:00 PM, internet-drafts@ietf.org wrote: >=20 > A New Internet-Draft is available from the on-line Internet-Drafts dire= ctories. > This draft is a work item of the Host Identity Protocol WG of the IETF.= >=20 > Title : Native NAT Traversal Mode for the Host Ident= ity Protocol > Authors : Ari Keranen > Jan Mel=C3=A9n > Miika Komu > Filename : draft-ietf-hip-native-nat-traversal-23.txt > Pages : 60 > Date : 2017-11-12 >=20 > Abstract: > This document specifies a new Network Address Translator (NAT) > traversal mode for the Host Identity Protocol (HIP). The new mode = is > based on the Interactive Connectivity Establishment (ICE) methodolo= gy > and UDP encapsulation of data and signaling traffic. The main > difference from the previously specified modes is the use of HIP > messages for all NAT traversal procedures. >=20 >=20 > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ >=20 > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-hip-native-nat-traversal-23 > https://datatracker.ietf.org/doc/html/draft-ietf-hip-native-nat-travers= al-23 >=20 > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-hip-native-nat-traversal= -23 >=20 >=20 > Please note that it may take a couple of minutes from the time of submi= ssion > until the htmlized version and diff are available at tools.ietf.org. >=20 > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ >=20 > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec >=20 From nobody Wed Nov 22 03:21:54 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A55EA127522 for ; Wed, 22 Nov 2017 03:21:52 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.11 X-Spam-Level: X-Spam-Status: No, score=-4.11 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_DKIM_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=ericsson.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3Hxm0J-1DSb8 for ; Wed, 22 Nov 2017 03:21:50 -0800 (PST) Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2143412426E for ; Wed, 22 Nov 2017 03:21:49 -0800 (PST) X-AuditID: c1b4fb25-d91ff700000020f7-6a-5a155dcc6500 Received: from ESESSHC003.ericsson.se (Unknown_Domain [153.88.183.27]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id CC.7D.08439.CCD551A5; Wed, 22 Nov 2017 12:21:48 +0100 (CET) Received: from EUR02-VE1-obe.outbound.protection.outlook.com (153.88.183.145) by oa.msg.ericsson.com (153.88.183.27) with Microsoft SMTP Server (TLS) id 14.3.352.0; Wed, 22 Nov 2017 12:21:47 +0100 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.onmicrosoft.com; s=selector1-ericsson-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=BFK/2SsBNUC8OyhAcwHTf/h1AwqLuVLE+rVfXbr/oNc=; b=AiKBqDJz3jI2F+BNhrPrWhInlSP8DA9Twjnz0nRouaqJA0pgyjKRlmzw/GI69//Rrox8KoNB81IsKnjcMq5caSIDHvttMQcG0WIoZYnrjjmnL1Ot8IBA8ZjCeRWOCo5YGxmzU4C5ykz6ytJOUf62l+IOHZShZu1odWiPPf6F2AA= Received: from [192.168.1.7] (37.136.86.88) by AM3PR07MB0631.eurprd07.prod.outlook.com (2a01:111:e400:8837::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.260.2; Wed, 22 Nov 2017 11:21:46 +0000 From: Gonzalo Camarillo To: HIP Message-ID: <7d84466e-4532-a06a-9c21-772040ffaf29@ericsson.com> Date: Wed, 22 Nov 2017 13:21:39 +0200 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Language: en-US Content-Transfer-Encoding: 7bit X-Originating-IP: [37.136.86.88] X-ClientProxiedBy: HE1PR02CA0103.eurprd02.prod.outlook.com (2603:10a6:7:29::32) To AM3PR07MB0631.eurprd07.prod.outlook.com (2a01:111:e400:8837::11) X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: bfa087b1-f72a-47cd-2e82-08d5319b37d5 X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(5600022)(4604075)(2017052603258); SRVR:AM3PR07MB0631; X-Microsoft-Exchange-Diagnostics: 1; AM3PR07MB0631; 3:Mi8SFMOgZgC0+1kEpZ/VjGH6hWdhUWoBEnI0EqJEDbxXV7nRhXuuS/YSbhKI8FMKA37MeXOCpyWGzV1jZX4f141wG46pqpElATPR07AZG4SNZYd2TF14301phFzs07i4w1yBHOT8TNuU+o6cKsRSyCkZleYMQ4I1r4AxbH4ZYB9kksa6j3ofF79bhuE2nq1/vMj8EQJKKrysL1BjZ3gkxgu9UBX2KIEgVeVHOnGBFaNVFZzCG4rm49jnLUW1w3jg; 25:YF3GzldGfZxneLTBY1Ot2WvxOd+AU4oJrRlx7a2X3UF9Gm3PLOHU2CxToh5gbx+B7n0zzF7A/hvm47C2tX7MeWWlw8o/44v+f6lvsypouP8rHwUOfX89nqttg75qMsh3NkAk/48jmG08gi+ll5GeOHSndrO1cBPNTcqWhJQkXf0SVyCLj/GZVIetguTPUleBeWHDYurXpe85SLY6GWqQtNoNuIf7SZqM78IUux3iEqIA7WrspR8RIpKkohukrXCgeORNfAjj9c7OPsGw3S93/+VFmhzz1r34QM08PTPJr3z0NWlnWX3kch6zpKIh3R2Y4zo5tP+6oWQX7UZHiDibIjYSqZfHeRplBaprPgvA95E=; 31:UxqQmMjW3LUEpG9jjtl/vScr04Byli7ONwkqnREI9yEqaM8ZPEf0ceon1voylo/WKv54fXzBRkE1p/dkuY9kNSlNreW1RbjlMu7DngMQni4tLs0TJvXabqDGhKxe+6nMyfSAHul7qEBubfRQU+bU9wZyomwRs1ZRt87JL2E8B7kAEdvNJ5ENFbR+/N7d+EJdyPXZVIk7k1OPAEtgR6NZbDrzriNwXKky0i8gW/8i7a4= X-MS-TrafficTypeDiagnostic: AM3PR07MB0631: X-Microsoft-Exchange-Diagnostics: 1; AM3PR07MB0631; 20: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; 4:zQiaVr8tkVT/G+P4/eRhK4VNp9/LM61bdNyJQcaT/Xld96Tn6z+wxGzDM/DniQB75ThFBTJQfCOLBo7bNFxibMwrSoUQ7qqLhuq10NF3d0BAN9ty6GJjyZrqL+TKAxDQraT+fOjmblOEXhNh+v+5dlnVdNEA0rzaesC3POVoyckulWnkCB5nvrIsO/JDsNiHu/EXp7yAyUPEkLOD49bM3tt17+nJtzdci967jPf6eLJokdrg8ptxM/XhEUtREFKzvoeYsyPFWqpvKPS0+cbGr8DZDoRC4oIf8UsQBl+Fa11ctDwLYISbnnY+6EXaOY0a X-Microsoft-Antispam-PRVS: X-Exchange-Antispam-Report-Test: UriScan:(120809045254105); X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(8121501046)(5005006)(93006095)(93001095)(3002001)(100000703101)(100105400095)(3231022)(10201501046)(6041248)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123558100)(20161123555025)(20161123562025)(20161123560025)(20161123564025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM3PR07MB0631; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM3PR07MB0631; X-Forefront-PRVS: 0499DAF22A X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10009020)(6009001)(6049001)(346002)(39860400002)(376002)(189002)(199003)(50466002)(6116002)(305945005)(65826007)(31686004)(5660300001)(6666003)(6916009)(58126008)(64126003)(16576012)(316002)(16526018)(52146003)(2906002)(8676002)(23676004)(106356001)(33646002)(6306002)(230700001)(97736004)(3846002)(117156002)(54356999)(50986999)(101416001)(65956001)(65806001)(47776003)(66066001)(68736007)(25786009)(31696002)(105586002)(86362001)(7736002)(6486002)(230783001)(36756003)(8936002)(77096006)(478600001)(81166006)(83506002)(81156014)(966005)(189998001)(2486003)(53936002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM3PR07MB0631; H:[192.168.1.7]; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; Received-SPF: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts) Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=gonzalo.camarillo@ericsson.com; X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtBTTNQUjA3TUIwNjMxOzIzOmpyb0RBS2NKUXFJMHZHYVVqNFF5ZVlBSnI3?= =?utf-8?B?VHQxRnB4Wi9ObW1PajNYcDB6dW9VM1lGNFVZdmVnUWlaUjBDQmJxNU5RWjdX?= =?utf-8?B?dnljVmEvMDVhaWVFMmpiWjhmdlFoaFBrY0R5RnRKTkp1SG1CdkRNZTlBN3Rl?= =?utf-8?B?UDJGRW5laU1QaGpOcTNrTFdLWmNqbWNpazFLQmRUQ0Z3R20zM0ZQWUtGdng1?= =?utf-8?B?bDlFT1VUYktsdTBpSHlhVlluQkI5dzcwcmVWNFZXdGZsLzZQdHNhRGZHNEp0?= =?utf-8?B?TDhaNXlFMWZVdVU2SVNPMWxNSXhFMlp3b293ejJSYU54M2JRbm4xNmYrYnU2?= =?utf-8?B?VmdkM010WFFFR0VJejhJTjZiODV3Y0VVRmRrK2VZMFF1SWYrZ3YydWl4Y2M0?= =?utf-8?B?RzBxQk5hQVZINzlaMFdEOHFEN0xlR24raWx1VVFHMEM4ZmRRVDZWVTV3Znpn?= =?utf-8?B?dVV4WTNCSGJhVW5VeFE3b2RmWituTWY3eWxRTW5pVHF3eWgxOTc4SFNnOWlp?= =?utf-8?B?QVV4bStjR09FMWRyT2xhL2dORFZIRmlrSXVQWlIzSmpWTU1QR2JYVXRoRC9P?= =?utf-8?B?VTVJWnN1azJZTzZ6V21abEtlVnpnblBrUW5lRXVJRytWMjNVS0ZFQVlzRWpo?= =?utf-8?B?WXBGb213WVF2bEp1Yjl2RzYwSEwvZldOTUxocjJPR3Z2TjR3N3U4OCtZN3Zq?= =?utf-8?B?VW1yS25WN05HZURMQ0c0T0pod0hiam1tYlFLckdmamJlNWRyMjZUbUVlZzhy?= =?utf-8?B?UDRhUE5EZi9heGFNMzk0VzlYd2dLTVZIazA1UFYxaHhOKzhjenNlZGVjTVE3?= =?utf-8?B?YUVXSFVBWFMxTE81c1dLWmJrUVdoZWprK0JwNTdEcGNJbkhUcXY5RE8wZmVu?= =?utf-8?B?NVhJNDVnSnlGZ3FVVWd6ODZ0SlQxdmJVMmZOYVRGSlJyWU5DQXZ5YUFMNTlD?= =?utf-8?B?NHRpZXFYdU40amF0RTJUUC81aHJOYzMxM05GZEljRFpYRVJXMllVVjhvbGF0?= =?utf-8?B?cDFrYVJTZmtnVFhub05uaFQxYWU2bDhQTTZoOGNGdkRFUEtmc05KTW5BSHQ4?= =?utf-8?B?MDZaNWgxNzhrbTZZT0owUkc4aUpTSG1sMzdOeGU1dVNxQnVaQ1UvVjNqaGtn?= =?utf-8?B?OFg3L0FvZEo2dGkwN05YdnJqTGxMd3ZtcHFlaUpMNUlucUNUTWNIRDQ3L3Vk?= =?utf-8?B?REJ3WWpDZ3lCdFcrTUNnMU02cXpqSEc4RGNzNVBkck83ZHdNdjdGVzVSeEJE?= =?utf-8?B?bXpXVVNwVkNnUi9FSG55cEZUV0Zlb3c4Y29iTC92VDF2ZElPeXRCZ29ZMjBi?= =?utf-8?B?RXNOY3RScGdWaktpTlhvSmZBWVNJUnpXZ3dkbUZmTnVMNitVTmlFNmY5Tnh5?= =?utf-8?B?a1hvYUh4WVhoeFFkSms4dFBuaitjOHNLdnpPOFBMV0pjSklKVll5YUJaUUdl?= =?utf-8?B?L2pDVElPUTVsQUZsa2oyT0lIM1FSdkxMb0wrVzVJUmpTNjQvYWUrZ1F0ZXhj?= =?utf-8?B?Vk5nQ09ubXdEaUtyWjBsVklOUis5ZitWWktkdnQ5eE9xYUdHK0ZHMVBzMkFO?= =?utf-8?B?TnFTd2J2dFV5cXRpSnlvU091YzhQTlhTc2hSWU8wYVc4engrVGthQnpjN1Z3?= =?utf-8?B?ZHYvMzA2dm1WZ1h6TnY3VFo0Yms5R2NUcmtIcStkc2dIOXJIUmFseFhsTm43?= =?utf-8?B?T2labEl3TGN1Y2lRSzdLaU43STN5cUdObURXNnlDM3hVUTN1dW5yKzdxYmdZ?= =?utf-8?Q?3s1AAC9t+dqe4/KeN3iKUzM7DIFmoWMEKfg5Q=3D?= X-Microsoft-Exchange-Diagnostics: 1; AM3PR07MB0631; 6:ugpHiMWspH7SdZfqGslcDZQaVwe+ylQB4BivsysX1fReJaZqHDv+KXSBbu46fs09pjkBEDpwOD/GcIumq/KnPPN6R5SsL+OVnBlWDU6g/80zLNPQSUNkP5hmVOYSOE/U65pWxbLFfmTvIk3YhW9Fe65/df+lyULD+mG+am290g/QrB36bv+U5ULLmAYiLOnbZP2Nw6sPDY+aPI44RnBVgalUvGv3EZZ1D0BJh0avLEx/bMhuhwKgHINC32+f50SuMz5/gxldJfAH7+d+ySVEt6SDUC8zpsKvKEYabRQKtMhfCVbi5I6YxVQVCVYXw+M/03CsxVGo3IujIId7ogij5lMBETSNaXaqvJS6cNlCCnI=; 5:fcT4aS6Zkn++9+aduE6qQGy+VQXZI+9o5mJgZIM2UiMNBfUK+RyjuYGmqd6oCltUMRTcPLSvJIXs6NS50+ZbUkm+gZ5ettZudo7L+OOcIJUBnFug4m1S2wposoqCBWxDZ9eRZ2z+ycaM8M4iJrOqa11Oo62kAG58bxk3tO7de7g=; 24:vfVDJ7wjsazNQNUUiLNBd0XTc36mKIE/cdIpVJqby2Ky2nfNoSvKWzzecnvqn/+nIYcnwUWywy3lVcSSKK7+hiCqjGV2Tcxm7nefCxyuN/g=; 7:H6K9IawU3xvvjp5m02ay1roVfLP+XfUbKeUsGcMQ92YerlZZP/YTc7zWenXSqeyVcRq4H/4FqOyzoZbTEVFLBnlF2X17prDtvc1YqzC3YalBLlsBRI4zeLt0H5JWqMqOK6lJh7jV+k9kOTHgPQUJT2prVhBFryxK/HVZopOm9LBk6Q/tTTEha8njdCijx1uksYZmtC19+GsdnoHTh+2Sdqbq2W0okgVdlamKcBRF+K6eiQ4pgiYGs+0O0TBvrPD8 SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Nov 2017 11:21:46.5296 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: bfa087b1-f72a-47cd-2e82-08d5319b37d5 X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM3PR07MB0631 X-OriginatorOrg: ericsson.com X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrNIsWRmVeSWpSXmKPExsUyM2K7tO6ZWNEogz2tEhZTF01mdmD0WLLk J1MAYxSXTUpqTmZZapG+XQJXxplD11kKnjFVdEx8zNjAuJCpi5GTQ0LARKLv0022LkYuDiGB w4wSS58eYAVJCAmcYJR4PFMQJMEi0Mss8XzlNiaIqjYmiY7l11lAqtgELCS23LoPZgsLmEos fr4cbKyIgKREz92lYHFeAXuJ4w9OMIPYLAKqEktengOrERWIkZj44CIjRI2gxMmZT4DqOTiY BTQl1u/SBwkzC4hL3HoynwnClpfY/nYOM8TVChL7f6wEu1pCYDqjxL07c9ghrtaWWP6shQWi SFbi6Nk5ULavxIx5y1kgGpYwSiy8sQPq/ynsEvuP5UPYWhItN9ZDFf1gk2jduYkd5CIJgWyJ 7lOGEDXWEqe2TGSGqLnCKnG8tR9qg4zE/7+XWSES51klDn75zARxUqrElhstbCA2o0CixN97 b6Huvioocfz1VeYJjJqzkIJgFiIIZiEFwSykIFjAyLKKUbQ4tTgpN93IWC+1KDO5uDg/Ty8v tWQTIzBJHNzyW3UH4+U3jocYBTgYlXh4u/VFo4RYE8uKK3MPMUpwMCuJ8O5VAArxpiRWVqUW 5ccXleakFh9ilOZgURLnPenJGyUkkJ5YkpqdmlqQWgSTZeLglGpgDElR9+uoYTpw4OPhWoO7 TqcSMzuZdld+v+kbeScnToNjY/vTudNXl1ybtV4ybt/TmPknVyXNr/gmcDjtuld51/1jhtFl vHn2QS+mTrx9S2yD0MzbZwzMV/IUbT/uvWXTMU4esy0Mz/ZuDg6cz/NnB/PH2h1hLZyOCxRT jm0wyJMXUXUxmtd0VImlOCPRUIu5qDgRAKtdaagOAwAA Archived-At: Subject: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Nov 2017 11:21:52 -0000 Folks, we already WGLCed version 15 of this draft back in February. Miika has addressed a few comments since then. I would like to start a second WGLC on the the draft to make sure it is ready for publication request. This WGLC will end on December 7th: https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ Thanks, Gonzalo From nobody Thu Nov 23 03:35:04 2017 Return-Path: X-Original-To: hipsec@ietf.org Delivered-To: hipsec@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 71D9B124F57; Thu, 23 Nov 2017 03:35:02 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: Cc: hipsec@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.66.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <151143690242.13094.10181765958814486740@ietfa.amsl.com> Date: Thu, 23 Nov 2017 03:35:02 -0800 Archived-At: Subject: [Hipsec] I-D Action: draft-ietf-hip-rfc4423-bis-18.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Nov 2017 11:35:02 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol WG of the IETF. Title : Host Identity Protocol Architecture Authors : Robert Moskowitz Miika Komu Filename : draft-ietf-hip-rfc4423-bis-18.txt Pages : 42 Date : 2017-11-23 Abstract: This memo describes a new namespace, the Host Identity namespace, and a new protocol layer, the Host Identity Protocol, between the internetworking and transport layers. Herein are presented the basics of the current namespaces, their strengths and weaknesses, and how a new namespace will add completeness to them. The roles of this new namespace in the protocols are defined. This document obsoletes RFC 4423 and addresses the concerns raised by the IESG, particularly that of crypto agility. It incorporates lessons learned from the implementations of RFC 5201 and goes further to explain how HIP works as a secure signaling channel. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-rfc4423-bis/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-hip-rfc4423-bis-18 https://datatracker.ietf.org/doc/html/draft-ietf-hip-rfc4423-bis-18 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-rfc4423-bis-18 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Thu Nov 23 03:36:56 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CD01A126D85 for ; Thu, 23 Nov 2017 03:36:54 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l0gopEBXZ_ux for ; Thu, 23 Nov 2017 03:36:53 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EEF91124F57 for ; Thu, 23 Nov 2017 03:36:52 -0800 (PST) X-AuditID: c1b4fb30-df9f99c000002554-de-5a16b2d2392b Received: from ESESSHC012.ericsson.se (Unknown_Domain [153.88.183.54]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id E1.54.09556.2D2B61A5; Thu, 23 Nov 2017 12:36:51 +0100 (CET) Received: from [131.160.51.186] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.56) with Microsoft SMTP Server id 14.3.352.0; Thu, 23 Nov 2017 12:36:50 +0100 To: References: <151143690242.13094.10181765958814486740@ietfa.amsl.com> From: Miika Komu Organization: Ericsson AB Message-ID: <555a40c6-8d47-e49a-5400-52774be1a738@ericsson.com> Date: Thu, 23 Nov 2017 13:36:50 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 MIME-Version: 1.0 In-Reply-To: <151143690242.13094.10181765958814486740@ietfa.amsl.com> Content-Type: text/plain; charset="utf-8"; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrALMWRmVeSWpSXmKPExsUyM2K7me7lTWJRBr8WsFtMXTSZ2YHRY8mS n0wBjFFcNimpOZllqUX6dglcGYuv97IXNApWfF26mqmBcSpvFyMnh4SAicSLKd1sXYxcHEIC hxklZmxczQThrGGUeL/mCwtIlbCAs0TPj4tsILaIgKjElA+nmbsYOYCKXCQePHAHCbMJaEms unOdGcTmF5CU2NCwG6yEV8BeYt9kMZAwi4CqRMeJiWATRQUiJJ43v2cFsXkFBCVOznwCFucU cJU43P2cEcRmFrCQmDn/PJQtLnHryXwmCFteYvvbOVAXqEhcPBY8gVFwFpJJs5B0z0LSPQtJ 9wJGllWMosWpxUm56UZGeqlFmcnFxfl5enmpJZsYgeF6cMtvgx2ML587HmIU4GBU4uFdvFQs Sog1say4MvcQowQHs5IIr3g7UIg3JbGyKrUoP76oNCe1+BCjNAeLkjjvSU/eKCGB9MSS1OzU 1ILUIpgsEwenVAOj+2PPjRfLTG79krprcf5bxjz7KN6Fx1z4O3x4sx/M0jbeX3jpgJ5fwWtN rpnWN47HeKpt7u1Y+jffWG9eTvKdlF+37et+Pvb9sn5LSmJfeFP275f7fonxnZvIGBurYP92 /5tpaxni1BRUz+xuqnT74BR6O/hL4aYfoueul+7TXLju/AL1Mv1oJZbijERDLeai4kQAisqJ olMCAAA= Archived-At: Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-rfc4423-bis-18.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Nov 2017 11:36:55 -0000 FYI, the only change was that I updated the HIP certificate draft reference from "bis" to RFC8002. On 11/23/2017 01:35 PM, internet-drafts@ietf.org wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Host Identity Protocol WG of the IETF. > > Title : Host Identity Protocol Architecture > Authors : Robert Moskowitz > Miika Komu > Filename : draft-ietf-hip-rfc4423-bis-18.txt > Pages : 42 > Date : 2017-11-23 > > Abstract: > This memo describes a new namespace, the Host Identity namespace, and > a new protocol layer, the Host Identity Protocol, between the > internetworking and transport layers. Herein are presented the > basics of the current namespaces, their strengths and weaknesses, and > how a new namespace will add completeness to them. The roles of this > new namespace in the protocols are defined. > > This document obsoletes RFC 4423 and addresses the concerns raised by > the IESG, particularly that of crypto agility. It incorporates > lessons learned from the implementations of RFC 5201 and goes further > to explain how HIP works as a secure signaling channel. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-hip-rfc4423-bis/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-hip-rfc4423-bis-18 > https://datatracker.ietf.org/doc/html/draft-ietf-hip-rfc4423-bis-18 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-rfc4423-bis-18 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > From nobody Tue Nov 28 09:10:52 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 250E11289B5 for ; Tue, 28 Nov 2017 09:10:51 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.6 X-Spam-Level: X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BNBcPAMoaE80 for ; Tue, 28 Nov 2017 09:10:50 -0800 (PST) Received: from out.west.exch081.serverdata.net (cas081-co-1.exch081.serverdata.net [199.193.204.182]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 067AD126DED for ; Tue, 28 Nov 2017 09:10:49 -0800 (PST) Received: from MBX081-W5-CO-2.exch081.serverpod.net (10.224.129.85) by MBX081-W5-CO-1 (10.224.129.84) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Tue, 28 Nov 2017 09:10:48 -0800 Received: from MBX081-W5-CO-2.exch081.serverpod.net ([10.224.129.85]) by MBX081-W5-CO-2.exch081.serverpod.net ([10.224.129.85]) with mapi id 15.00.1178.000; Tue, 28 Nov 2017 09:10:48 -0800 From: Jeff Ahrenholz To: HIP , Miika Komu Thread-Topic: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 Thread-Index: AQHTY4Qbc9UVvM0MgUGgSqgkrV6YN6MqEKMA Date: Tue, 28 Nov 2017 17:10:48 +0000 Message-ID: References: <7d84466e-4532-a06a-9c21-772040ffaf29@ericsson.com> In-Reply-To: <7d84466e-4532-a06a-9c21-772040ffaf29@ericsson.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-messagesentrepresentingtype: 1 x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [216.168.34.194] Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 Archived-At: Subject: Re: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Nov 2017 17:10:51 -0000 TWlpa2EsDQpJIHJldmlld2VkIHlvdXIgY2hhbmdlcywgYW5kIHNlbnQgeW91IHNvbWUgdHlwb3Mg LyBlZGl0b3JpYWwgbml0cy4NCg0KSGVyZSBhcmUgc29tZSBmdXJ0aGVyIGNvbW1lbnRzOg0KDQoN ClNlY3Rpb24gNC45DQoNCiJJdCBTSE9VTEQgd2FpdCBmb3IgYWxsIG9mIHRoZW0gdG8gcmVzcG9u ZCBmb3IgdHdvIG1pbnV0ZXMiDQoNCldoZXJlIGRvZXMgdGhpcyB2YWx1ZSBjb21lIGZyb20/DQpT aG91bGQgdGhpcyBiZSBhIGNvbmZpZ3VyYWJsZSB0aW1lLCBkZWZhdWx0IHR3byBtaW51dGVzPw0K DQpJdCBzZWVtcyBsaWtlIGEgbG9uZyB0aW1lIGluIHRoZSBjb250ZXh0IG9mIGFkZHJlc3MgbW9i aWxpdHksIHdoaWNoIHlvdSB3YW50IHRvIGNvbXBsZXRlIGFzIHNvb24gYXMgcG9zc2libGUuIFRo ZW4gYWdhaW4sIG9uIGEgaGlnaC1sYXRlbmN5IG5ldHdvcmsgb3Igb3ZlcmxvYWRlZCBzZXJ2ZXIs IG1heWJlIHdlIG5lZWQgdG8gd2FpdCBsb25nZXIuDQoNCg0KU2VjdGlvbiA0LjEyLjMNCg0KImJ1 dCBjb3VsZCBvY2N1ciBvbiBhIGJ1c3kgc2VydmVyIGFjdGluZyBhcyBhIFJlc3BvbmRlciINCg0K V2hhdCBkb2VzIHRoaXMgbWVhbiwgYWN0aW5nIGFzIGEgUmVzcG9uZGVyPyBTaG91bGQgdGhpcyBy ZWFkICJhY3RpbmcgYXMgYSBSZWxheSI/DQoNCuKAnFRoZSBzYW1lIGFwcGxpZXMgYWxzbyB0aGUg aGFuZG92ZXINCiAgIHByb2NlZHVyZXM7IHRoZSBEYXRhIFJlbGF5IENsaWVudCBNVVNUIE5PVCBp bmNsdWRlIHRoZSByZWxheWVkDQogICBhZGRyZXNzIGNhbmRpZGF0ZSB3aGVuIHNlbmRpbmcgaXRz IG5ldyBsb2NhdG9yIHNldCBpbiBhbiBVUERBVEUgdG8NCiAgIGl0cyBwZWVyIGlmIGl0IHdvdWxk IGNhdXNlIGEgU1BJIGNvbmZsaWN0IHdpdGggYW5vdGhlciBwZWVyLuKAnQ0KDQpJcyBpdCBwb3Nz aWJsZSB0aGVuIHRvIGhhdmUgbm8gdmFsaWQgbG9jYXRvcnMgaGVyZSwgZHVlIHRvIHRoZSBTUEkg Y29sbGlzaW9uPyBXaGF0IHdpbGwgaGFwcGVuIHRoZW4/DQoNCg0KcmVnYXJkcywNCi1KZWZmDQoN Ck9uIDExLzIyLzE3LCAzOjIxIEFNLCAiSGlwc2VjIG9uIGJlaGFsZiBvZiBHb256YWxvIENhbWFy aWxsbyIgPGhpcHNlYy1ib3VuY2VzQGlldGYub3JnIG9uIGJlaGFsZiBvZiBHb256YWxvLkNhbWFy aWxsb0Blcmljc3Nvbi5jb20+IHdyb3RlOg0KDQogICAgRm9sa3MsDQogICAgDQogICAgd2UgYWxy ZWFkeSBXR0xDZWQgdmVyc2lvbiAxNSBvZiB0aGlzIGRyYWZ0IGJhY2sgaW4gRmVicnVhcnkuIE1p aWthIGhhcw0KICAgIGFkZHJlc3NlZCBhIGZldyBjb21tZW50cyBzaW5jZSB0aGVuLiBJIHdvdWxk IGxpa2UgdG8gc3RhcnQgYSBzZWNvbmQgV0dMQw0KICAgIG9uIHRoZSB0aGUgZHJhZnQgdG8gbWFr ZSBzdXJlIGl0IGlzIHJlYWR5IGZvciBwdWJsaWNhdGlvbiByZXF1ZXN0LiBUaGlzDQogICAgV0dM QyB3aWxsIGVuZCBvbiBEZWNlbWJlciA3dGg6DQogICAgDQogICAgaHR0cHM6Ly9kYXRhdHJhY2tl ci5pZXRmLm9yZy9kb2MvZHJhZnQtaWV0Zi1oaXAtbmF0aXZlLW5hdC10cmF2ZXJzYWwvDQogICAg DQogICAgVGhhbmtzLA0KICAgIA0KICAgIEdvbnphbG8NCiAgICANCiAgICBfX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXw0KICAgIEhpcHNlYyBtYWlsaW5nIGxp c3QNCiAgICBIaXBzZWNAaWV0Zi5vcmcNCiAgICBodHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFu L2xpc3RpbmZvL2hpcHNlYw0KICAgIA0KDQoNCg0K From nobody Wed Nov 29 09:15:26 2017 Return-Path: X-Original-To: hipsec@ietf.org Delivered-To: hipsec@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CDBD126B72; Wed, 29 Nov 2017 09:15:24 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: internet-drafts@ietf.org To: Cc: hipsec@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.66.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <151197572423.7952.15302005890537133310@ietfa.amsl.com> Date: Wed, 29 Nov 2017 09:15:24 -0800 Archived-At: Subject: [Hipsec] I-D Action: draft-ietf-hip-native-nat-traversal-24.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Nov 2017 17:15:24 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol WG of the IETF. Title : Native NAT Traversal Mode for the Host Identity Protocol Authors : Ari Keranen Jan Melén Miika Komu Filename : draft-ietf-hip-native-nat-traversal-24.txt Pages : 60 Date : 2017-11-29 Abstract: This document specifies a new Network Address Translator (NAT) traversal mode for the Host Identity Protocol (HIP). The new mode is based on the Interactive Connectivity Establishment (ICE) methodology and UDP encapsulation of data and signaling traffic. The main difference from the previously specified modes is the use of HIP messages for all NAT traversal procedures. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-traversal/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-hip-native-nat-traversal-24 https://datatracker.ietf.org/doc/html/draft-ietf-hip-native-nat-traversal-24 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-native-nat-traversal-24 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Wed Nov 29 09:19:47 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90E50128768 for ; Wed, 29 Nov 2017 09:19:46 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dOAyewFCnAsy for ; Wed, 29 Nov 2017 09:19:45 -0800 (PST) Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AAAFD127867 for ; Wed, 29 Nov 2017 09:19:44 -0800 (PST) X-AuditID: c1b4fb3a-c73ff70000004c48-8c-5a1eec2e4e97 Received: from ESESSHC024.ericsson.se (Unknown_Domain [153.88.183.90]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id E3.79.19528.E2CEE1A5; Wed, 29 Nov 2017 18:19:42 +0100 (CET) Received: from [131.160.51.186] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.92) with Microsoft SMTP Server id 14.3.352.0; Wed, 29 Nov 2017 18:19:41 +0100 To: hip WG , Jeff Ahrenholz References: <7d84466e-4532-a06a-9c21-772040ffaf29@ericsson.com> From: Miika Komu Organization: Ericsson AB Message-ID: <516c85e1-468b-6779-51e4-44f26180719e@ericsson.com> Date: Wed, 29 Nov 2017 19:19:42 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset="utf-8"; format=flowed Content-Language: en-US Content-Transfer-Encoding: quoted-printable X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrDLMWRmVeSWpSXmKPExsUyM2J7lK7eG7kog+4ObYupiyYzW7ROucns wOSxZMlPJo+tezpZApiiuGxSUnMyy1KL9O0SuDJWHv7HWnBZrGLL1QvMDYzbBbsYOTkkBEwk rky/wtrFyMUhJHCYUeLiuR4oZw2jxIG9cxhBqoQFnCT2H/kDZosIBErcbJjPAmILCdRKrNrZ zAZiswloSay6c50ZxOYXkJTY0LAbzOYVsJfYtGI+E4jNIqAq8fVhL1i9qECExPPm96wQNYIS J2c+AZvJKeAh8WLnIrBeZgELiZnzzzNC2OISt55AzGEW0JZYtvA1UA0H0A0qEhePBU9gFJyF ZNIsJN2zkHTPQtK9gJFlFaNocWpxcW66kZFealFmcnFxfp5eXmrJJkZgGB/c8ttqB+PB546H GAU4GJV4eJ9cl4sSYk0sK67MPcQowcGsJMKrsBsoxJuSWFmVWpQfX1Sak1p8iFGag0VJnPek J2+UkEB6YklqdmpqQWoRTJaJg1OqgdHrWNXGuWfZH6Wt0DCbmWK4eaqXOFtR7UlpebfXr/ts Ju70mXrInfXOjw5x76dH03W05WK5H07kZGk/6HLu54nY80yPv52P0L2+cN2m19L7Q9cJ74ws MxViqq9/uiwtdrX1mSdc0y4vyxG/LT3jy/b5aZuYPyvLSvz7qH+xpvf3pN9M6vfYL/cosRRn JBpqMRcVJwIAA2P/2F8CAAA= Archived-At: Subject: Re: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Nov 2017 17:19:46 -0000 Hi, On 11/28/2017 07:10 PM, Jeff Ahrenholz wrote: > Miika, > I reviewed your changes, and sent you some typos / editorial nits. thanks, you're nits are included in version 24 as well as your other=20 comments below. > Here are some further comments: >=20 >=20 > Section 4.9 >=20 > "It SHOULD wait for all of them to respond for two minutes" >=20 > Where does this value come from? > Should this be a configurable time, default two minutes? >=20 > It seems like a long time in the context of address mobility, which you= want to complete as soon as possible. Then again, on a high-latency netw= ork or overloaded server, maybe we need to wait longer. now it says: It SHOULD wait for all of them to respond for a configurable time, by=20 default two minutes, and then continue with the handover procedure... > Section 4.12.3 >=20 > "but could occur on a busy server acting as a Responder" >=20 > What does this mean, acting as a Responder? Should this read "acting as= a Relay"? yes, the Data Relay is the root of the problem. Fixed. > =E2=80=9CThe same applies also the handover > procedures; the Data Relay Client MUST NOT include the relayed > address candidate when sending its new locator set in an UPDATE to > its peer if it would cause a SPI conflict with another peer.=E2=80=9D= >=20 > Is it possible then to have no valid locators here, due to the SPI coll= ision? What will happen then? The hosts will anyway send their local locators and server reflexive=20 ones, and only the relayed one must be omitted. So, this means that no=20 connectivity if NAT traversal fails. Remember that this is just a back=20 up plan which the data relay client executes only when it fails to=20 register for a new relayed candidate *and* the SPI would conflict. In=20 other words, a data relay client MAY reuse server relayed candidates=20 only if SPI does not conflict. (I did not correct anything related to this, let me know explicitly if=20 you would like to see some changes) >=20 > regards, > -Jeff >=20 > On 11/22/17, 3:21 AM, "Hipsec on behalf of Gonzalo Camarillo" wrote: >=20 > Folks, > =20 > we already WGLCed version 15 of this draft back in February. Miika= has > addressed a few comments since then. I would like to start a secon= d WGLC > on the the draft to make sure it is ready for publication request.= This > WGLC will end on December 7th: > =20 > https://datatracker.ietf.org/doc/draft-ietf-hip-native-nat-travers= al/ > =20 > Thanks, > =20 > Gonzalo > =20 > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > =20 >=20 >=20 >=20 From nobody Wed Nov 29 10:33:41 2017 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71520127B73 for ; Wed, 29 Nov 2017 10:33:39 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JXDavPYtmmfS for ; Wed, 29 Nov 2017 10:33:38 -0800 (PST) Received: from out.west.exch081.serverdata.net (cas081-co-6.exch081.serverdata.net [199.193.204.187]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55B98127444 for ; Wed, 29 Nov 2017 10:33:38 -0800 (PST) Received: from MBX081-W5-CO-2.exch081.serverpod.net (10.224.129.85) by MBX081-W5-CO-2 (10.224.129.85) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Wed, 29 Nov 2017 10:33:36 -0800 Received: from MBX081-W5-CO-2.exch081.serverpod.net ([10.224.129.85]) by MBX081-W5-CO-2.exch081.serverpod.net ([10.224.129.85]) with mapi id 15.00.1178.000; Wed, 29 Nov 2017 10:33:35 -0800 From: Jeff Ahrenholz To: Miika Komu , hip WG Thread-Topic: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 Thread-Index: AQHTY4Qbc9UVvM0MgUGgSqgkrV6YN6MqEKMAgAIa7QD//46JgA== Date: Wed, 29 Nov 2017 18:33:35 +0000 Message-ID: References: <7d84466e-4532-a06a-9c21-772040ffaf29@ericsson.com> <516c85e1-468b-6779-51e4-44f26180719e@ericsson.com> In-Reply-To: <516c85e1-468b-6779-51e4-44f26180719e@ericsson.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-messagesentrepresentingtype: 1 x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [216.168.34.194] Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 Archived-At: Subject: Re: [Hipsec] WGLC: draft-ietf-hip-native-nat-traversal-23 X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Nov 2017 18:33:39 -0000 TWlpa2EsDQoNCj4gICAgbm93IGl0IHNheXM6DQo+ICAgIA0KPiAgICBJdCBTSE9VTEQgd2FpdCBm b3IgYWxsIG9mIHRoZW0gdG8gcmVzcG9uZCBmb3IgYSBjb25maWd1cmFibGUgdGltZSwgYnkgDQo+ ICAgIGRlZmF1bHQgdHdvIG1pbnV0ZXMsIGFuZCB0aGVuIGNvbnRpbnVlIHdpdGggdGhlIGhhbmRv dmVyIHByb2NlZHVyZS4uLg0KDQpPSywgdmFyaW91cyBjaGFuZ2VzIGxvb2sgZ29vZC4NCg0KPj4g SXMgaXQgcG9zc2libGUgdGhlbiB0byBoYXZlIG5vIHZhbGlkIGxvY2F0b3JzIGhlcmUsIGR1ZSB0 byB0aGUgU1BJIGNvbGxpc2lvbj8gV2hhdCB3aWxsIGhhcHBlbiB0aGVuPw0KPiAgICBUaGUgaG9z dHMgd2lsbCBhbnl3YXkgc2VuZCB0aGVpciBsb2NhbCBsb2NhdG9ycyBhbmQgc2VydmVyIHJlZmxl eGl2ZSANCj4gICAgb25lcywgYW5kIG9ubHkgdGhlIHJlbGF5ZWQgb25lIG11c3QgYmUgb21pdHRl ZC4gU28sIHRoaXMgbWVhbnMgdGhhdCBubyANCj4gICAgY29ubmVjdGl2aXR5IGlmIE5BVCB0cmF2 ZXJzYWwgZmFpbHMuIFJlbWVtYmVyIHRoYXQgdGhpcyBpcyBqdXN0IGEgYmFjayANCj4gICAgdXAg cGxhbiB3aGljaCB0aGUgZGF0YSByZWxheSBjbGllbnQgZXhlY3V0ZXMgb25seSB3aGVuIGl0IGZh aWxzIHRvIA0KPiAgICByZWdpc3RlciBmb3IgYSBuZXcgcmVsYXllZCBjYW5kaWRhdGUgKmFuZCog dGhlIFNQSSB3b3VsZCBjb25mbGljdC4gSW4gDQo+ICAgIG90aGVyIHdvcmRzLCBhIGRhdGEgcmVs YXkgY2xpZW50IE1BWSByZXVzZSBzZXJ2ZXIgcmVsYXllZCBjYW5kaWRhdGVzIA0KPiAgICBvbmx5 IGlmIFNQSSBkb2VzIG5vdCBjb25mbGljdC4NCj4gICAgDQo+ICAgIChJIGRpZCBub3QgY29ycmVj dCBhbnl0aGluZyByZWxhdGVkIHRvIHRoaXMsIGxldCBtZSBrbm93IGV4cGxpY2l0bHkgaWYgDQo+ ICAgIHlvdSB3b3VsZCBsaWtlIHRvIHNlZSBzb21lIGNoYW5nZXMpDQoNCk9LLCB0aGFua3MgZm9y IHRoZSBleHBsYW5hdGlvbi4gSSBkb27igJl0IHRoaW5rIGFueSBmdXJ0aGVyIGNoYW5nZXMgYXJl IG5lZWRlZCBoZXJlLg0KDQotSmVmZg0KDQo=