[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: (mobile-ip) Mobile IP for FreeBSD from Portland State University

To: Bill Trost <trost@cs.pdx.edu>
Subject: Re: (mobile-ip) Mobile IP for FreeBSD from Portland State University
From: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>
Date: Fri, 01 Aug 1997 19:17:51 -0400
CC: ipsec@tis.com
In-reply-to: Your message of "Fri, 01 Aug 1997 11:01:20 PDT." <m0wuM0v-0000C8C@cloud.rain.com>
Sender: owner-ipsec@ex.tis.com

-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Bill" == Bill Trost <trost@cs.pdx.edu> writes:

    Bill> Portland State University's newest release of Mobile IP for
    Bill> FreeBSD is now available.  This release combines Mobile IP
    Bill> routing with IPSEC security.

  Which set of transforms? NRL below suggests RFC ones.
  ...

    Bill> Portions of the release are export controlled.  They can
    Bill> only be downloaded by filling out a form at
    Bill> http://web.mit.edu/network/isakmp/isakmpform.html.


    Bill> * IPSEC support within the Mobile IP daemons.  All traffic
    Bill> between mobile nodes and their home agents may be encrypted,
    Bill> essentially creating a virtual private network.  Foreign
    Bill> agents are not involved in the IPSEC security associations,
    Bill> but are tunneled over.  In this release, encryption is
    Bill> supported only when the mobile node is at a foreign agent
    Bill> unless PSU's ad hoc mode; in that case, encryption may be
    Bill> used when the mobile node is at its home agent as well as at
    Bill> foreign agents.

    Bill> Also, foreign agents may require home agents to authenticate
    Bill> IPIP packets they send, preventing attackers from using
    Bill> foreign agents to circumvent a firewall.

...

    Bill> * NRL's IPSEC, ported to FreeBSD, with extensions to allow
    Bill> IPSEC security associations to be bound to routes.  This
    Bill> allows virtual private networks to be created by simply
    Bill> configuring the routing table appropriately.

   :!mcr!:            |  Network security programming, currently
   Michael Richardson | on contract with DataFellows F-Secure IPSec
 WWW: <A HREF="http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html">mcr@sandelman.ottawa.on.ca</A>. PGP key available.


-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQB1AwUBM+JumKZpLyXYhL+BAQFsrgMAk9XT0WmhLCi8B5fr2juxsoYFcDCuWxAI
6T35C7fQiu5vUPbSumRtv46MrJGrD4Q+I28B4XF20Ip7es3q3Flr6Uw+u2W73jVT
+ZXAi/xh8AnbRSei4QbvpMmniG3ox0VP
=B6dc
-----END PGP SIGNATURE-----

Prev by Date: RE: Calling the question: derived vs. explicit IV
Next by Date: Re: Mobile IP for FreeBSD from Portland State University
Prev by thread: Proposed IPsec interop workshop
Next by thread: I-D ACTION:draft-simpson-esp-v2-00.txt
Index(es):
- Main
- Thread