[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Issue# 1-Security Policy Definition

To: ipsec-policy <ipsec-policy@xxxxxxxx>
Subject: Issue# 1-Security Policy Definition
From: "Abdallah Rayhan" <arayhan@xxxxxxxxxxxxxxxxxx>
Date: Thu, 17 Aug 2000 15:30:14 -0400
List-archive: <http://www.vpnc.org/ipsec-policy/mail-archive/>
List-id: <ipsec-policy.vpnc.org>
List-unsubscribe: <mailto:ipsec-policy-request@vpnc.org?body=unsubscribe>
Organization: Nortel Networks
Sender: owner-ipsec-policy@xxxxxxxxxxxxx

Issue# 1-Security Policy Definition

What is the policy that we are trying to address here?

   1-Is it a pre-IKE/IPSec initialization process, e.g,
     the SA parameters needed to make IKE/IPSec run
     smoothly (pre-IKE interoperability)?

   2-Resolving the tunneling issues of IKE/IPSec? e.g.,
     how to build IPSec tunnels across multiple gateways?

   3-Defining IPsec-gateway traversal policy? e.g.,
     allow certain policy (filtering rules) to be
     defined on the fly and enforced on the IPSec
     packets traversing certain gateways (open
     pinholes in the gateway for particular
     applications)!

   4-Providing low-level policy infrastructure to
     facilitate installing network (high-level) policies
     into network devices? In this case, what is the
     difference between the two? e.g, provisioning,
     and how to map the two?

Comments?


Abdallah Rayhan

Follow-Ups:
- Re: Issue# 1-Security Policy Definition
  - From: Angelos D. Keromytis

Prev by Date: Re: IPSP topics
Next by Date: Issue# 2-Gateway Discovery
Previous by thread: IPSP topics
Next by thread: Re: Issue# 1-Security Policy Definition
Index(es):
- Date
- Thread