btns core
play

BTNS Core Michael Richardson (mcr@xelerance.com) Nico Williams - PowerPoint PPT Presentation

May 31, 2023 •43 likes •103 views

BTNS Core Michael Richardson (mcr@xelerance.com) Nico Williams (nicolas.williams@sun.com) Setup for the examples AS1 . . AS2 [A]----+----[SG-A].......+....+.......[SG-B]-------[B] ...... \

  1. BTNS Core Michael Richardson (mcr@xelerance.com) Nico Williams (nicolas.williams@sun.com)

  2. Setup for the examples AS1 . . AS2 [A]----+----[SG-A].......+....+.......[SG-B]-------[B] ...... \ ..PI.. ----[btns-B] ...... [btns-C].....+....+.......[btns-D] Figure 1: Reference Network Diagram In this diagram, there are six end-nodes: A, B, C and D. Two of the systems are security gateways: SG-A, SG-B, protecting networks on which [A] and [B] reside. There is a node [Q] which is IPsec and BTNS capable, and node [R] is a simple node, with no IPsec or BTNS capability. Nodes [C] and [D] are BTNS capable. We will examine interactions between the BTNS enabled nodes, and the IPsec enabled nodes. Nodes C and Q have a fixed addresses. Node D non-fixed addresses. PI is the Public Internet ("The Wild").

  3. Example #1: sgA The machine that we will care about will be [SG-A], a firewall device of some kind which we wish to configure to respond to BTNS connections from [C]. Child SA Rule Remote ID IDs allowed SPD Search by ---- --------- ----------- ------------- 1 <B's ID> <B's network> ID 2 <Q's ID> <Q's host> ID 3 PUBLICKEY:any ANY by-IP Figure 2: SG-A PAD table

  4. Example #1: sgA Rule Local Remote Next Layer BTNS Action ID/TS ID/TS Protocol ok ---- ----- ------ ---------- ---- ----------------------- 1 ID:A ID:R ANY N/A BYPASS 2 ID:A ID:Q ANY no PROTECT(ESP,tunnel,AES, SHA256) 3 ID:A ID:B ANY no PROTECT(ESP,tunnel,AES, SHA256) 4 IP:A-net IP:ANY ANY yes PROTECT(ESP,transport, integr+conf) Figure 3: SG-A SPD table

  5. Example #2: Q Rule Remote ID IDs allowed SPD Search by ---- --------- ----------- ------------- 1 <A's ID> <A's address> ID 2 PUBLICKEY:any ANY by-IP Figure 4: Q PAD table Rule Local Remote Next Layer BTNS Action ID/TS ID/TS Protocol ok ---- ----- ------ ---------- ---- ----------------------- 1 ID:Q ID:A ANY no PROTECT(ESP,tunnel,AES, SHA256) 2 IP:Q IP:ANY ANY yes PROTECT(ESP,transport, and port integr+conf) 2049 Figure 5: SG-A SPD table

  6. Example #3: C Child SA Rule Remote ID IDs allowed SPD Search by ---- --------- ----------- ------------- 1 PUBLICKEY:any ANY by-IP Figure 6: Q PAD table Rule Local Remote Next Layer BTNS Action ID/TS ID/TS Protocol ok ---- ----- ------ ---------- ---- ----------------------- 1 IP:C IP:ANY ANY yes PROTECT(ESP,transport, and port integr+conf) 2049 2 ID:C IP:ANY ANY N/A BYPASS Figure 7: SG-A SPD table

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

BTNS Problem and Applicability Statement Joe Touch David Black Yu-Shun Wang 1 11/10/2005 3:19

BTNS Problem and Applicability Statement Joe Touch David Black Yu-Shun Wang 1 11/10/2005 3:19

BTNS Problem and Applicability Statement Joe Touch David Black Yu-Shun Wang 1 11/10/2005 3:19 PM Document Status Versions: draft-ietf-btns-prob-and-applic-00.txt July 1, 2005 draft-ietf-btns-prob-and-applic-01.txt Sept.

349 views • 7 slides
Rick Sturm BNMS: Genetic association of naevi morphology and melanoma twitter.com/uqdrc Study

Rick Sturm BNMS: Genetic association of naevi morphology and melanoma twitter.com/uqdrc Study

Rick Sturm BNMS: Genetic association of naevi morphology and melanoma twitter.com/uqdrc Study Populations available to the CRE BERNS = Brisbane Electoral Roll Naevus Study, CRE core study n=150 BTNS = Brisbane Twin Naevus Study; n&gt;3,000

860 views • 12 slides
Motivation Memory is a shared resource Core Core Memory Core Core Threads requests

Motivation Memory is a shared resource Core Core Memory Core Core Threads requests

Thread Cluster Memory Scheduling : Exploiting Differences in Memory Access Behavior Yoongu Kim Michael Papamichael Onur Mutlu Mor Harchol-Balter Motivation Memory is a shared resource Core Core Memory Core Core Threads requests

738 views • 48 slides
The Elective Options 7 th Grade Core &amp; Electives Core Choose Core &amp; Elective

The Elective Options 7 th Grade Core &amp; Electives Core Choose Core &amp; Elective

Co Cours rse e Info format mation ion Co Conve vers rsati ation on th 8 th th Grade 7 th ade Understanding The Core Requirements And The Elective Options 7 th Grade Core &amp; Electives Core Choose Core &amp; Elective

252 views • 13 slides
Welcome Welcome Core: Core A Regional Destination Core: Core UL Core: Core Downtown

Welcome Welcome Core: Core A Regional Destination Core: Core UL Core: Core Downtown

Welcome Welcome Core: Core A Regional Destination Core: Core UL Core: Core Downtown Core: Core Oil Center Center Core: Core Horse Farm Aspects: Bertrand Bertrand Aspects: Bertrand Bertrand Aspects: Bertrand Bertrand

200 views • 17 slides
RPS 205 Core Values Importance in Adopting Organizational Core Values The core values are the

RPS 205 Core Values Importance in Adopting Organizational Core Values The core values are the

RPS 205 Core Values Importance in Adopting Organizational Core Values The core values are the guiding principles that dictate behavior and action. Support our vision Shape the culture Redefine our identity Clarify the expectations

590 views • 16 slides
What is This Iowa Core and Common Core Curriculum? And where are we in the implementation

What is This Iowa Core and Common Core Curriculum? And where are we in the implementation

What is This Iowa Core and Common Core Curriculum? And where are we in the implementation process? What is the Common Core? The Common Core State Standards Initiative is sponsored by the National Governors Association (NGA) and the Council of

567 views • 21 slides
What is core training? The core is the platform for movement. Chop off the head, legs and

What is core training? The core is the platform for movement. Chop off the head, legs and

What is core training? The core is the platform for movement. Chop off the head, legs and arms and you are left with the core. Upper Back/ Postural Muscles are often overlooked. Rounded backs during planks or other core

277 views • 12 slides
Caching, Parallelism, Fault Tolerance Marco Serafini COMPSCI 532 Lectures 2-3 Memory Hierarchy

Caching, Parallelism, Fault Tolerance Marco Serafini COMPSCI 532 Lectures 2-3 Memory Hierarchy

Caching, Parallelism, Fault Tolerance Marco Serafini COMPSCI 532 Lectures 2-3 Memory Hierarchy Multi-Core Processors Processor (chip) Processor (chip) Processor (chip) core core core core core core core core core core core

1.04k views • 53 slides
CORE COMPETENCIES How does School District 47 help students to self-assess core competencies in:

CORE COMPETENCIES How does School District 47 help students to self-assess core competencies in:

CORE COMPETENCIES How does School District 47 help students to self-assess core competencies in: communication thinking personal &amp; social WHAT ARE THE CORE COMPETENCIES? CORE COMPETENCIES Core competencies are sets of intellectual,

463 views • 21 slides
What? Why? How? CORE VALUES What? Core

What? Why? How? CORE VALUES What? Core

LIVING THE VALUES From words to Action TITLE OF THE PRESENTATION Subtitle of the presentation Peter Posner January 2013 President World YMCA CORE VALUES What? Why? How? CORE VALUES What?

466 views • 27 slides
LIVING OUR CORE VALUES DEERFIELD ELEMENTARY SCHOOL CORE VALUE CORE VALUES What is important

LIVING OUR CORE VALUES DEERFIELD ELEMENTARY SCHOOL CORE VALUE CORE VALUES What is important

LIVING OUR CORE VALUES DEERFIELD ELEMENTARY SCHOOL CORE VALUE CORE VALUES What is important to us How we behave How we treat others DEERFIELDS CARE VALUES Cooperation Academic Excellence and Acceptance Respect and

311 views • 15 slides
CORE 2016 A fresh approach to the Certificate of Resuscitation and Emergency Care (CORE) August

CORE 2016 A fresh approach to the Certificate of Resuscitation and Emergency Care (CORE) August

CORE 2016 A fresh approach to the Certificate of Resuscitation and Emergency Care (CORE) August 2016 nzrc.org.nz CORE 2016 CORE is widely recognised in New Zealand as standard training for health professionals. CORE 2016 is about

261 views • 24 slides
Final Assembly Chip Core Your final project chip consists of a core The Chip Core is

Final Assembly Chip Core Your final project chip consists of a core The Chip Core is

Final Assembly Chip Core Your final project chip consists of a core The Chip Core is everything that is inside and a pad ring the Pad Ring Core is the guts Try to floorplan your core so that its as small a rectangle as

230 views • 11 slides
Advanced SQL 01 The Core of SQL Torsten Grust Universitt Tbingen, Germany 1 The Core

Advanced SQL 01 The Core of SQL Torsten Grust Universitt Tbingen, Germany 1 The Core

Advanced SQL 01 The Core of SQL Torsten Grust Universitt Tbingen, Germany 1 The Core of SQL Let us recollect the core constructs of SQL , synchronize notation, and introduce query conventions. If you need to refresh your SQL memory,

1.08k views • 51 slides
Core Working Group Report Philip Levis ( speaking on behalf of the WG ) TTX 5 2/22/08 Core WG

Core Working Group Report Philip Levis ( speaking on behalf of the WG ) TTX 5 2/22/08 Core WG

Core Working Group Report Philip Levis ( speaking on behalf of the WG ) TTX 5 2/22/08 Core WG Charter The TinyOS 2.0 Core Working Group ( core ) decides what abstractions , services , and interfaces are in the TinyOS 2.0 core system ,

588 views • 17 slides
Smart Growth America Technical Assistance Webinar Optional dial-in: (855) 426-1528

Smart Growth America Technical Assistance Webinar Optional dial-in: (855) 426-1528

Smart Growth America Technical Assistance Webinar Optional dial-in: (855) 426-1528 Conference ID: 78109639 September 14, 2016 Overview Of Smart Growth America Technical Assistance John Robert Smith Senior Policy Advisor and

496 views • 48 slides
Applied Distributed Systems January 14 th , 2020 Suresh Marru, Marlon Pierce smarru@iu.edu,

Applied Distributed Systems January 14 th , 2020 Suresh Marru, Marlon Pierce smarru@iu.edu,

Applied Distributed Systems January 14 th , 2020 Suresh Marru, Marlon Pierce smarru@iu.edu, marpierc@iu.edu Todays Outline What To Expect Course Logistics Course Topic Overview Open Discussion Structure of the Class We

987 views • 45 slides
Social Security Disability Benefits: 101 and Interface with Employment Teressa A. McGarry

Social Security Disability Benefits: 101 and Interface with Employment Teressa A. McGarry

Social Security Disability Benefits: 101 and Interface with Employment Teressa A. McGarry Community Work Incentive Coordinator Ability Connection Colorado Terry McGarry 303-226-5537 tmcgarry@abilityconnectioncolorado.org Im receiving

582 views • 13 slides
The Labor Supply Effects of Disability Insurance Work Disincentives: Evidence from Administrative

The Labor Supply Effects of Disability Insurance Work Disincentives: Evidence from Administrative

The Labor Supply Effects of Disability Insurance Work Disincentives: Evidence from Administrative Data Nicole Maestas, RAND and Pardee RAND Graduate School Jae Song, SSA Retirement Research Consortium Conference August, 2010 MRRC Funding

387 views • 18 slides
Margulies mark : - Daniel 2- eiberg Stochastic Recap : Variation Inference al Bound (

Margulies mark : - Daniel 2- eiberg Stochastic Recap : Variation Inference al Bound (

Lecture 18 : Black Box Variational Inference Niklas Swede Scribes Margulies mark : - Daniel 2- eiberg Stochastic Recap : Variation Inference al Bound ( ELBO ) Lower Objective Evidence : , ,[ log.gl?tTr.. , ] 219,10 Ea , ) =

342 views • 23 slides
Sustainable Groundwater Management Act Update August 13, 2020 What Do We Have to Do? Partner

Sustainable Groundwater Management Act Update August 13, 2020 What Do We Have to Do? Partner

Sustainable Groundwater Management Act Update August 13, 2020 What Do We Have to Do? Partner with other GSAs in the basin Engage with stakeholders (nasbgroundwater.org) Fill data gaps New monitoring wells Collect water

331 views • 8 slides
3264 CONICS IN A SECOND Paul Breiding Bernd Sturmfels Sascha Timme 1 / 28 A conic in the

3264 CONICS IN A SECOND Paul Breiding Bernd Sturmfels Sascha Timme 1 / 28 A conic in the

3264 CONICS IN A SECOND Paul Breiding Bernd Sturmfels Sascha Timme 1 / 28 A conic in the plane R 2 is the set of solutions to a quadratic equation A ( x, y ) = 0 , where A ( x, y ) = a 1 x 2 + a 2 xy + a 3 y 2 + a 4 x + a 5 y + 1 . 2 / 28 A

758 views • 44 slides
Options for Apprenticeships and Internships T ODAY S Presenter P RESENTER David Hoff

Options for Apprenticeships and Internships T ODAY S Presenter P RESENTER David Hoff

Options for Apprenticeships and Internships T ODAY S Presenter P RESENTER David Hoff Institute for Community Inclusion, UMass Boston 617-287-4308 david.hoff@umb.edu T ICKET TO W ORK : W HAT I S I T ? For every individual ages 18-64 on:

400 views • 18 slides

More recommend