On Fri, 16 Feb 2018, Tero Kivinen wrote:
The proposed charter text is
----------------------------------------------------------------------
MOBIKE protocol [RFC4555] is used to move existing IKE/IPsec SA from
one IP address to another. However, in MOBIKE it is the initiator of
the IKE SA (i.e. remote access client) that controls this process. If
there are several responders each having own IP address and acting
together as a load sharing cluster, then it is desirable for them to
have ability to request initiator to switch to a particular member.
The working group will analyze the possibility to extend MOBIKE
protocol or to develop new IKE extension that will allow to build load
sharing clusters in an interoperable way.
----------------------------------------------------------------------
It could be also possible that we first start just researching whether
we actually need any protocol changes, and if so make specifications
for them, and if not, we might still want to publish some kind of
informational document describing how those existing mechanisms can be
used for this purpose.
Send your comments and whether you support adding this to the charter
to the ipsec list in next two weeks.
I support further discussion on this item, but I would like the
discussion to focus first on the goal (failover/redundancy) and then
look at solutions (maybe re-using/extending MOBIKE)
Paul
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
