[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Coursework research

To: Jack Aubert <jaubert@cpcug.org>
Subject: Re: Coursework research
From: "Scott G. Kelly" <skelly@redcreek.com>
Date: Fri, 23 Oct 1998 10:08:45 -0700
CC: ipsec@tis.com
Organization: RedCreek Communications
References: <3.0.5.32.19981022214057.00a0f100@cpcug.org>
Sender: owner-ipsec@ex.tis.com

Jack Aubert wrote:
<trimmed...>
> I am interested in looking at management of the "many-to-many problem" -- a
> problem which may be faced by my own organization  -- where you need to
> securely configure a potentially large number (e.g. several hundred to a
> few  thousand) devices, each of which may need to communicate bilaterally
> with any other in the system without a great deal of manual labor. Are
> there any RFCs or drafts that deal with this issue... and are there
> alternative approaches?

You are really asking about 2 related issues here. You state one, i.e.
secure configuration, and implicitly reference the other, i.e. scalable
policy specification and distribution. There are several drafts which
discuss these individually (copied from archived message):

"IPSec Policy Data Model" 
    <draft-ietf-ipsec-policy-model-00.txt> 

 "An LDAP Schema for Configuration and Administration of 
  IPSec based Virtual Private Networks (VPNs)" 
    <draft-ietf-ipsec-vpn-policy-schema-00.txt> 

 "Secure Configuration of IPsec-Enabled Network Devices" 
    <draft-ietf-ipsec-secconf-00.txt> 

 "Security Policy Specification Language" 
    <draft-ietf-ipsec-spsl-00.txt>

References:

Coursework research

From: Jack Aubert <jaubert@cpcug.org>

Prev by Date: RE: I-D ACTION:draft-ietf-ipsec-mib-01.txt
Next by Date: about draft "VPN framework"
Prev by thread: Coursework research
Next by thread: about draft "VPN framework"
Index(es):
- Main
- Thread