Skip to main content

A Method to Provide Dynamic Routing in IPsec VPNs
draft-knight-ppvpn-ipsec-dynroute-03

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors Paul Knight , Bryan Gleeson
Last updated 2003-10-27
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

Exchange of routing information between IPsec security gateways, using standard routing protocols across IPsec tunnels, can be a straightforward operation. Using the routing information to choose the proper path is also straightforward, when routing is functionally separated from the IPsec gateway operation. One of the most significant obstacles to widespread implementation of dynamic routing in IPsec VPNs has been agreement on a way to exchange and use the routing information. This document describes a simple and secure method of exchanging dynamic routing information between IPsec security gateways, using standard IPsec messages. This method is currently in use in a large number of installations, and has been demonstrated to be interoperable across several IPsec implementations from different vendors.

Authors

Paul Knight
Bryan Gleeson

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)