A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers
Draft of message to be sent after approval:
From: The IESG <firstname.lastname@example.org> To: IETF-Announce <email@example.com> Cc: Internet Architecture Board <firstname.lastname@example.org>, RFC Editor <email@example.com>, ipsec mailing list <firstname.lastname@example.org>, ipsec chair <email@example.com> Subject: Document Action: 'A Traffic-Based Method of Detecting Dead IKE Peers' to Informational RFC The IESG has approved the following document: - 'A Traffic-Based Method of Detecting Dead IKE Peers ' <draft-ietf-ipsec-dpd-05.txt> as an Informational RFC This document is the product of the IP Security Protocol Working Group. The IESG contact persons are Russ Housley and Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-ipsec-dpd-05.txt
Technical Summary This draft describes a method of detecting a dead IKE (Internet Key Exchange) peer. The method, called Dead Peer Detection (DPD), uses IPsec traffic patterns to limit the number of IKE messages sent. DPD, like other keepalive mechanisms, is often necessary to perform IKE peer failover, or to reclaim lost resources. Working Group Summary The IPsec Working Group came to consensus on this document. Protocol Quality This document was reviewed by Russell Housley for the IESG.