Re: [dpdk-dev] RFC - IPsec Sample App

["Gunaseelan Venkatachary - ERS, HCL Tech" <gunaseelanv@hcl.com>]

I am looking for making some app on IpSec VPN , the below thread has thrown some light on the North bound interface on CLI , do we have any such existing implantations in place so that we can take ref from that and take it forward , Thanks for your support

Best Regards
Gunaseelan V 
91 98408 60856

-----Original Message-----
From: dev [mailto:dev-bounces@dpdk.org] On Behalf Of Gonzalez Monroy, Sergio
Sent: Wednesday, September 16, 2015 10:15 PM
To: Thomas Monjalon; dev@dpdk.org
Subject: Re: [dpdk-dev] RFC - IPsec Sample App

On 16/09/2015 09:35, Thomas Monjalon wrote:
> 2015-09-16 09:29, Gonzalez Monroy, Sergio:
>> We are looking for feedback on the proposal to create a new sample 
>> application
> [...]
>> A set of generic APIs for the configuration of IPsec security 
>> policies and associations will be provided, which will be independent 
>> of the
> How can you have some API in a sample application?
> It looks like an IPsec library, not an application.
The intention of those APIs was just to provide flexibility to the users and allow them to easily setup different Security Policies (SP) and Security Associations (SA) for testing of different environments if they are looking to base something off this example app.
> Are we going to add a library for each protocol in DPDK like it is 
> done in the Linux kernel stack (including OVS)? Probably no.
You are probably right in that sense and we probably shouldn't have a sample app for every protocol, but we feel that to really put the new cryptodev API under test we need a good example, and showing how the cryptodev API could be use to do IPsec would certainly fill the bill. A more trivial application would not necessarily reveal any gaps in the API that would prevent cryptodev being used for an IPSec implementation. By creating a sample app incorporating much of an IPsec implementation, we get greater confidence in the usefulness of our APIs
- and the performance of the cryptodev - in a realistic setting, while also providing sample code that may well be of use to a wider audience.

Sergio


::DISCLAIMER::
----------------------------------------------------------------------------------------------------------------------------------------------------

The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only.
E-mail transmission is not guaranteed to be secure or error-free as information could be intercepted, corrupted,
lost, destroyed, arrive late or incomplete, or may contain viruses in transmission. The e mail and its contents
(with or without referred errors) shall therefore not attach any liability on the originator or HCL or its affiliates.
Views or opinions, if any, presented in this email are solely those of the author and may not necessarily reflect the
views or opinions of HCL or its affiliates. Any form of reproduction, dissemination, copying, disclosure, modification,
distribution and / or publication of this message without the prior written consent of authorized representative of
HCL is strictly prohibited. If you have received this email in error please delete it and notify the sender immediately.
Before opening any email and/or attachments, please check them for viruses and other defects.

----------------------------------------------------------------------------------------------------------------------------------------------------