1 / 8

An SNMP Usage for RELOAD draft-peng-p2psip-snmp-02 IETF #81

An SNMP Usage for RELOAD draft-peng-p2psip-snmp-02 IETF #81. Yonglin PENG, Wei WANG , Zhenwu Hao, Yu MENG {peng.yonglin,wang.wei108,hao.zhenwu,meng.yu}@zte.com.cn. History. draft-peng-p2psip-snmp-00: Presented at IETF #79, initial description of SNMP solution

vui
Télécharger la présentation

An SNMP Usage for RELOAD draft-peng-p2psip-snmp-02 IETF #81

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. An SNMP Usage for RELOADdraft-peng-p2psip-snmp-02IETF #81 Yonglin PENG, Wei WANG, Zhenwu Hao, Yu MENG {peng.yonglin,wang.wei108,hao.zhenwu,meng.yu}@zte.com.cn

  2. History • draft-peng-p2psip-snmp-00: Presented at IETF #79, initial description of SNMP solution • draft-peng-p2psip-network-management-scenarios-02: Presented at IETF #80, gives the management scenarios description in P2P network • Feedback from opsawg (Randy Presuhn and David Harrington)

  3. Changes on draft-peng-p2psip-snmp-02 • Security considerations on SNMP association setup • Other minor changes • Use Findreq instead of Appattach in Management Node finding O-Node • Change operations to SNMPv3

  4. SNMP security issue • Key distribution and security model • Shared key based (SNMPv3 USM) • PKI based (Use RELOAD certification) • DTLS based (SNMP over DTLS, RFC 5953) • Solution 1 is widely supported by network managers, can use RELOAD certifications for key distribution

  5. SNMP shared key distribution

  6. Other issues • SNMP MIB modules • SNMP EngineID association • Consider PROXY-MIB and MIDCOM-MIB • Potential problems of using SNMP for configuration

  7. Next Steps • Fix detailed issue on SNMPv3 • Get more comments from SNMP and P2PSIP WG • Should this draft become a WG draft?

  8. Q&A Thanks!

More Related