120 likes | 253 Views
IGD Working Committee Update. Trevor Freeman Co-Chair, IGD Microsoft. Outline. IGD v1.0 recap and status IGD v2.0 objectives Working Committee Status. Internet Gateway Device 1.0. v1.0 approved in Nov 2001 Several IGD products in the market Different connection types supported
E N D
IGD Working Committee Update Trevor Freeman Co-Chair, IGD Microsoft
Outline • IGD v1.0 recap and status • IGD v2.0 objectives • Working Committee Status
Internet Gateway Device 1.0 • v1.0 approved in Nov 2001 • Several IGD products in the market • Different connection types supported • PPPoE, PPPoA, IP-Routed • Multiple WAN connections • Access to gateway info • Data rate, connection status • Automatic NAT-traversal
Tell peer to send packet to LAN address Routing to private LAN address fails End to end packet delivery Internet Discover IGD, Get WAN IP address Configure IGD to forward packets arriving on the IGD WAN address to host UPnP IGD Example for NAT traversal Peer Game System on Internet NAT using WAN address Home LAN Router Internet Gateway use without UPnP UPnP enabled Internet Gateway Device Game Host with private LAN IP address Tell peer to send packet to IGD’s WAN address
UPnP enabled routers available in market from … SMC 7004VBR 7004ABR Barricade 7004VWBR Barricade Plus 7004WFW Barricade Plus Wireless • Buffalo Technology • WBR-G54 AirStation Broadband Router • WBR-B11 AirStation Wireless Router HIWEST PLANET Persol PBR001, PBR002, Persol PBR003,PBR004 Persol PBRW001 Ver.PW 2.04 …and more!! COREGABAR mini 1.01.94 BAR SW-4P Pro R1.11 BAR SW-4PL 1.01.94 I-O DATA WN-B11/BBRH V1.01H WN-B11/BBRH-S V1.01H WN-B11/BBRH-S2 V1.01H • CREATIVE • BritePort 8100C Ver2.1.69.15.9 LINKSYS BEFSR11 BEFSR41/BEFSU31/ BEFSX41/BEFW11S4 MELCO BLR2-TX4L BLR3-TX4, BLR3-TX4L WBR-B11, WBR-G54 • ELECOM • LD-BBR4M3 R1.94h4v NEC Aterm BR1500H Aterm DR202C Aterm DR35FH/CE, DR35FH/GS Aterm WBR75H FUJITSU FC3521RA1 R2.30.b1 2040 M1 R3.30.b1 PCI BLW-03FA BRL-04FA D-Link DI-804 Broadband Gateway D-Link DI-713+/DI-714D-Link DI-604 Express Router DI-614+ , AirPlusXtremeG DI-624 TREND MICRO GateLockX200 MultiTech RF550VPN RouteFinderVPN YAMAHA RT56v RTA55i RTW65b, RTW65 Netgear MR814 Wireless Cable/DSL Router FVS318 Cable/DSL ProSafe VPN Firewall RP614 4.12 WGR614 Zyxel P650R-11, 11H, 11HW, 13, 13H, 13HW P314+, 3.50(CX.0) ZyWALL 1, 3.60 will ZyWALL 10W, 10II ZyAIR B-2000, 3.50(HB.0) NTT BA5000 Pro, BA8000 Pro MN7310, MN7320 , MN7530 MN8500 CB
Internet Gateway Device 2.0 • Committee formed in mid-2002 • Two-fold Charter • 802.11 Access Point configuration – AP 1.0 spec • Future IGD needs – IGD 2.0 spec • Initial focus mostly on Access Point spec • Reached 1.0 in October 2003 • Three reference implementations – GlobeSpanVirata, LGE, Intel • Aligned with IEEE TGi & WPA, WiFi Alliance work
Access Point DCP • Simplify Access Point setup • Initial configuration • Diagnostic information • Make enrollment of new clients easy • Devices with no UI • Guest clients • Additional access points • Enable deployment of stronger link security • Privacy important as WLAN usage increases • Make link security setup easy, including 802.1x
Access Point UPnP Services WLANAccessPointDevice WLANConfiguration required DeviceSecurity optional LinkAuthentication optional RadiusClient optional
AP Configuration Service • Common way to programmatically access AP information • SSID • AP mode – repeater, stand-alone • Valid channel set • Physical locationof the access point • Auto-fallback rate, Possible data rates • WEP encryption level, Default WEP key, WEP keys (1 to 4) • Configuration Status • Information on associated clients • Some of the configuration actions will be secured • E.g. setting of WEP key
Secure 802.11 link established Enrolling an 802.11 Client PC1 Dev1 • User prompted on PC1 for 802.1x authentication password Console PC Username: __Dev1__ Password: ________ • User enters info provided by Dev1 vendor (chassis/manual) • PC1 informs AP about successful validation Device without UI easily enrolled into secure WLAN
IGD DCP 2.0 • Scoping of work done • IPv6 support • Existing services modified for IPv6 • New services – firewall configuration • IGD v1 enhancements • Support for configuring IP Forwarding • Port mapping additions • Expected completion – Q1 ‘04