Hi, I just joined this list. I finally got my 6bone link up and running that was provided by Masaki Hideoru of MERIT (Thanks!) I am from the Regenstrief Institute for Health Care in Indianapolis, where we have an NGI project going. Part of this is to experiment with IPsec and some IPv6 in our health care information network. So far, I have two machines talking IPv6. Both run under FreeBSD 4.0 (KAME) dual stack. One machine acting as an IPv6 gateway to Merit. I have a DNS server running that has the AAAA records for my IPv6 machines. As soon as we have restructured our institute's DNS, our IPv6 names will become official. At that point I'd like to put some content out there. Since it seems like the 6bone is basically useless at this point (strong statement made to solicit rebuttal :-) may be I don't know what's going on? In my desperity to get some testing going I skimmed through the 6bone registry but found only few applications. Even to find IPv6 hostnames to ping to was hard to do. I also noted that traceroute6 sometimes didn't work at all (no hop notes came back after Merit.) What I am most confused about is this Internet/2 thing. I cannot seem to find out what protocols they are actually going with. Some QoS, but what about IPv6, IPsec? I do have a couple of questions about DNS name assignments in dynamically assigned addresses. And on v6 routing. But that's for later. Is anyone doing IPsec here? I would like to talk about that as well. Have tried earlier to run Apache+modssl over IPv6 but that would not work (modssl did not work ... probably a name resolution problem or something.) Next step is to deploy IPsec. I want to push this a little beyond simple tunneling and static keying. Particularly I wonder how to do two things: (1) link IKE/racoon with a PKI and using site certificates, (2) setting up user-level authenticated IPsec associations. If IPsec/IPv6 is going to take over the world, these things need to be worked out properly, are they yet? My project also involves minimal single board computers running FreeBSD and IPsec. The interesting issues here are automatic IP address assignment. Probably even IPv6. These little boxes are going to be used as (1) secure network printer interface, (2) and generally IPv6/IPsec bump-in-the-wire adapters. May be I can work in a small firewall and router as well. I'd love to run a test with one or more such boxes against a CISCO router :-). regards -Gunther
begin:vcard n:Schadow;Gunther tel;fax:+1 317 630 6962 tel;home:+1 317 816 0516 tel;work:+1 317 630 7960 x-mozilla-html:FALSE url:http://aurora.rg.iupui.edu org:Regenstrief Institute for Health Care adr:;;1050 Wishard Blvd;Indianapolis;Indiana;46202;USA version:2.1 email;internet:[EMAIL PROTECTED] title:M.D., Medical Information Scientist note;quoted-printable:Al oppinions expressed in this message are my own and do =0D=0Anot necessarily represent those of the Regenstrief Institute. fn:Gunther Schadow end:vcard
