RE: [Dime] Defining a new Application for mip6-split ?

To: <julien.bournelle at int-evry.fr>, <dime at ietf.org>
Subject: RE: [Dime] Defining a new Application for mip6-split ?
From: <Pasi.Eronen at nokia.com>
Date: Thu, 18 May 2006 14:45:00 +0300
Cc: hannes.tschofenig at gmx.net
In-reply-to: <20060518084224.GA21878@ipv6-3.int-evry.fr>
List-archive: <http://www1.ietf.org/pipermail/dime>
List-help: <mailto:dime-request@ietf.org?subject=help>
List-id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-post: <mailto:dime@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
Thread-index: AcZ6YCCpLFAQA1xJTTiJ0e02Jv/PUQAD8k9g
Thread-topic: [Dime] Defining a new Application for mip6-split ?

Hi Julien,

There's nothing in RFC 4072 that would limit its use to, say, PPP 
or 802.1X -- it works for IKEv2 as well (which can be considered
a special kind of network access, where the "link" is a tunnel
over IP).

The details (MIP6 or 802.11 WLAN or something else) can be sent
to the AAA server using e.g. Service-Type and/or NAS-Port-Type AVPs.

Best regards,
Pasi

> -----Original Message-----
> From: ext Julien Bournelle [mailto:julien.bournelle at int-evry.fr] 
> Sent: 18 May, 2006 11:42
> To: dime at ietf.org
> Cc: hannes.tschofenig at gmx.net
> Subject: [Dime] Defining a new Application for mip6-split ?
> 
> Hi all,
> 
>  we're in the process of updating/writing the document 
> describing use of
>  Diameter for the Mobile IPv6 split scenario.
> 
>  In the split scenario, the Mobile Node (MN) uses IKEv2 with the HA to
>  setup IPsec SAs. This exchange is also used by the HA to authenticate
>  the MN using EAP. The HA may rely on a AAA/EAP server for this. So we
>  have the following scheme:
> 
>  MN <-- IKEv2-EAP --> HA <--------> AAA
> 
>  A priori Diameter EAP (RFC 4072) can be used between HA and AAA. 
> 
>  The problem is that Diameter EAP is normally used for Network Access
>  authentication. 
> 
>  In our case, the AAA server must perform AAA functionality for the
>  Mobile IPv6 service. The AAA server must know that it has to 
>  authorize the mip6 service and the accounting (ASR/ASA) is also for 
>  mip6 and not for network access.
> 
>  For the above reason, it seems that we should define a new Diameter
>  Application. However, in the same time, the messages defined in
>  Diameter EAP could be reused.
> 
>  So I'd like to hear opinions concerning this issue.
> 
>  Thanks,
> 
> 
>  - Julien B.
> 
> 
> _______________________________________________
> DiME mailing list
> DiME at ietf.org
> https://www1.ietf.org/mailman/listinfo/dime
> 

_______________________________________________
DiME mailing list
DiME at ietf.org
https://www1.ietf.org/mailman/listinfo/dime

Follow-Ups:
- Re: [Dime] Defining a new Application for mip6-split ?
  - From: Julien Bournelle

References:
- [Dime] Defining a new Application for mip6-split ?
  - From: Julien Bournelle

Prev by Date: Re: [Dime] Defining a new Application for mip6-split ?
Next by Date: Re: [Dime] Defining a new Application for mip6-split ?
Previous by thread: [Dime] Defining a new Application for mip6-split ?
Next by thread: Re: [Dime] Defining a new Application for mip6-split ?
Index(es):
- Date
- Thread

RE: [Dime] Defining a new Application for mip6-split ?

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.