Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair.

Published byAmie Clarke Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair."— Presentation transcript:

1 1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair

2 2 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF AGENDA Introduction and Review Agenda Milestones/Plans Current Drafts Security Issues with VRRP VRRPv3 VRRPv3 MIB IPR Issues Further Interests of the WG

3 3 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF WG MILESTONES/PLANS Mar 2003 - Resolve open issues with authentication methods Mar 2003 - Submit updated version of VRRP (IPv4) for Draft Standard May 2003 - Submit VRRP for IPv6 (VRRPv3) for Proposed Standard Jul 2003 - Submit MIB for VRRPv3 for Proposed Standard Dec 2003 - Review the WG goals and future potential

4 4 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF CURRENT DRAFTS VRRPv2 (for IPv4) VRRPv3 (for IPv6) Coming Soon: VRRPv3 MIB VRRP IPSEC-AH Authentication Specification (???)

5 5 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF SECURITY ISSUES Problem: Clear text password does not provide much security. IPsec AH might provide little security but more details need to be specified. All the security mechanisms make the situation worse in case of mis- configuration. (2 Masters !!) Still vulnerable to all the LAN attacks Proposed Solution: Remove the security mechanisms from VRRP and write a good security section Work on a separate draft for providing IPsec AH security for VRRP (if enough interest in WG ??)

6 6 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF SECURITY ISSUES QUESTIONS More Questions: (How do we do it ?) Discourage or Remove fields from the header ? Backward compatibility issues when removing security ? Do we need to update the version number ? Do we need to recycle VRRPv2 through PS again ? Do we need to update VRRPv2 MIB (RFC 2787) ? Anything else ??? The Question: Anyone against removing security ? Say it Now !!

7 7 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRPv3 The current draft is draft-ietf-vrrp-ipv6-spec-03.txt Needs to be reviewed. Did anyone review it ? Are there any implementations ? Or Plans ? Can’t move forward without implementation experience !

8 8 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRPv3 MIB Needed before VRRPv3 draft moves to PS Kalyan, Kripakaran and Brian have started working on it New draft instead of updating the existing one A draft will be submitted to the WG soon Please review it !!

9 9 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF IPR ISSUES (Cisco) We found the following statement from Robert Barr, Cisco at http://www.in-addr.de/pipermail/lvs-users/2001-November/004135.html "Cisco will not assert any patent claims against anyone for an implementation of IETF standard for VRRP unless a patent claim is asserted against Cisco, in which event Cisco reserves the right to assert patent claims defensively. If a licensee would prefer a royalty-bearing license, we would make one available." Robert confirmed this statement in an email again on December 18, 2002 “That is our current position.”

10 10 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF IPR Issues (IBM) No answer has been received from IBM yet !!

11 11 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF ARE WE INTERESTED IN.. “IPsec AH Security for VRRP” draft ? available at http://www.keepalived.org/draft-ietf-vrrp-ipsecah-spec-00.txt Removing Priority value 0 (hold the election now) option ? Issues and Arguments document ? Anything else ?

12 12 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF Thank You

Download ppt "1 Virtual Router Redundancy Protocol (VRRP) San Francisco IETF VRRP Working Group March 2003 San Francisco IETF Mukesh Gupta / Nokia Chair."

Similar presentations

NSIS WG 71th IETF Philadelphia, PA, USA March 12, 2008 WG chairs:John Loughney Martin Stiemerling.

NSIS WG 71th IETF Philadelphia, PA, USA March 12, 2008 WG chairs:John Loughney Martin Stiemerling.
OSPF WG - IETF 66 OSPF Protocol Evolution WG Re-Charter Acee Lindem/Cisco Systems.

OSPF WG - IETF 66 OSPF Protocol Evolution WG Re-Charter Acee Lindem/Cisco Systems.
SIP issues with S/MIME and CMS Rohan Mahy SIP, SIPPING co-chair.

SIP issues with S/MIME and CMS Rohan Mahy SIP, SIPPING co-chair.
Detecting Network Attachment IETF61 Chairs: Pekka Nikander, Greg Daley.

Detecting Network Attachment IETF61 Chairs: Pekka Nikander, Greg Daley.
Tcpsecure ipr 1 Cisco IPR Disclosure Relating to tcpsecure Scott Bradner

Tcpsecure ipr 1 Cisco IPR Disclosure Relating to tcpsecure Scott Bradner
69th IETF Chicago, July 2007 CCAMP Working Group Charter and Liaisons.

69th IETF Chicago, July 2007 CCAMP Working Group Charter and Liaisons.
DNSEXT-63 Next steps in Trust Anchor Management for DNSSEC Ólafur Guðmundsson

DNSEXT-63 Next steps in Trust Anchor Management for DNSSEC Ólafur Guðmundsson
MANET Where are we? Where are we going? Adrian Farrel Routing AD Honolulu – November 2015 – IETF-91.

MANET Where are we? Where are we going? Adrian Farrel Routing AD Honolulu – November 2015 – IETF-91.
Abierman-rmonwg-17mar03 1 RMONMIB WG 56th IETF San Francisco, California March 17, 2003 Discussion: Admin:

Abierman-rmonwg-17mar03 1 RMONMIB WG 56th IETF San Francisco, California March 17, 2003 Discussion: Admin:
Doc.: IEEE 802.11-05/1096r0 Submission November 2005 Mike Moreton, STMicroelectronicsSlide 1 Emergency Call Support Notice: This document has been prepared.

Doc.: IEEE /1096r0 Submission November 2005 Mike Moreton, STMicroelectronicsSlide 1 Emergency Call Support Notice: This document has been prepared.
Network Security Principles & Practices

Network Security Principles & Practices
IPv6 WORKING GROUP (IPNGWG) March 2001 Minneapolis IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.

IPv6 WORKING GROUP (IPNGWG) March 2001 Minneapolis IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.
1 IPFIX Protocol Specifications IPFIX IETF-59 March 3, 2004 Benoit Claise Mark Fullmer Reinaldo Penno Paul Calato Stewart Bryant Ganesh Sadasivan.

1 IPFIX Protocol Specifications IPFIX IETF-59 March 3, 2004 Benoit Claise Mark Fullmer Reinaldo Penno Paul Calato Stewart Bryant Ganesh Sadasivan.
1 Virtual Router Redundancy Protocol (VRRP) Speaker: Li-Wen Chen Date: 2010-08-12.

1 Virtual Router Redundancy Protocol (VRRP) Speaker: Li-Wen Chen Date:
IPv6 Document Status and Action Plan Margaret Wasserman IETF56 San Francisco March 2003.

IPv6 Document Status and Action Plan Margaret Wasserman IETF56 San Francisco March 2003.
IPR in the IETF Personal Thoughts from an AD Adrian Farrel Thanks to: Dave Ward, Ross Callon, Scott Brander, Jorge Contreras,

IPR in the IETF Personal Thoughts from an AD Adrian Farrel Thanks to: Dave Ward, Ross Callon, Scott Brander, Jorge Contreras,
Audio/Video Transport Working Group 49th IETF, San Diego 13-14 December 2000 Stephen Casner -- Packet Colin Perkins -- ISI,

Audio/Video Transport Working Group 49th IETF, San Diego December 2000 Stephen Casner -- Packet Colin Perkins -- ISI,
MPTCP – MULTIPATH TCP Interim meeting #3 20 th October 2011 audio Yoshifumi Nishida Philip Eardley.

MPTCP – MULTIPATH TCP Interim meeting #3 20 th October 2011 audio Yoshifumi Nishida Philip Eardley.
IPv6 WORKING GROUP December 2001 Salt Lake City IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.

IPv6 WORKING GROUP December 2001 Salt Lake City IETF Bob Hinden / Nokia Steve Deering / Cisco Systems Co-Chairs.
XCON IETF 64 November 8 th – 9 th, 2005 Vancouver, BC, Canada.

XCON IETF 64 November 8 th – 9 th, 2005 Vancouver, BC, Canada.

Similar presentations

Ads by Google