On Nov 28, 2011, at 4:11 PM, Michael Ko wrote: > I agree that discovery is one of the issues that should be explored. Due to > the dynamic nature, automated discovery is an important requirement for the > user to set up a secure connection with an authorized network node. For a > direct end-to-end connection between two parties when both are located behind > different NATs, TURN resorts to the use of publicly addressable rendezvous > servers. Can the existing proprietary vendor solutions discussed in the side > meeting handle this situation?
When people here advocate for "discovery", what do they mean? Do you mean: - hubs can receive information from the spokes about what addresses the spoke gateways protect - hubs can proactively go out and find spokes and then ask what addresses each spoke gateway protects - something else --Paul Hoffman _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
