IGD Working Committee Update
Trevor Freeman
Co-Chair, IGD
Microsoft
Outline
IGD v1.0 recap and status
IGD v2.0 objectives
Working Committee Status
Internet Gateway Device 1.0v1.0 approved in Nov 2001
Several IGD products in the market
Different connection types supported PPPoE, PPPoA, IP-Routed
Multiple WAN connections
Access to gateway info Data rate, connection status
Automatic NAT-traversal
Internet Gateway use Internet Gateway use without UPnPwithout UPnP
UPnP enabled Internet UPnP enabled Internet Gateway DeviceGateway Device
Internet
Tell peer to send packet to LAN address
UPnP IGD Examplefor NAT traversal
UPnP IGD Examplefor NAT traversal
NAT using WAN address
Game Host with private LAN IP address
Peer Game System on Internet
Discover IGD, Get WAN IP address
Configure IGD to forwardpackets arriving on the IGD WAN address to host
Home LAN
Routing to private LAN address fails
End to end packet delivery
Tell peer to send packet to IGD’s WAN address
RouterRouter
UPnP enabled routers available in market from …
Buffalo TechnologyBuffalo Technology •WBR-G54 AirStation Broadband Router•WBR-B11 AirStation Wireless Router
Buffalo TechnologyBuffalo Technology •WBR-G54 AirStation Broadband Router•WBR-B11 AirStation Wireless RouterCOREGACOREGA
BAR mini 1.01.94 BAR SW-4P Pro R1.11 BAR SW-4PL 1.01.94
COREGACOREGA BAR mini 1.01.94 BAR SW-4P Pro R1.11 BAR SW-4PL 1.01.94
CREATIVECREATIVE
•BritePort 8100C Ver2.1.69.15.9
CREATIVECREATIVE
•BritePort 8100C Ver2.1.69.15.9 ELECOMELECOM
LD-BBR4M3 R1.94h4v
ELECOMELECOM
LD-BBR4M3 R1.94h4vFUJITSUFUJITSU
FC3521RA1 R2.30.b1 2040 M1 R3.30.b1
FUJITSUFUJITSU
FC3521RA1 R2.30.b1 2040 M1 R3.30.b1
D-Link D-Link DI-804 Broadband Gateway D-Link DI-713+/DI-714D-Link DI-604 Express Router DI-614+ , AirPlusXtremeG DI-624
D-Link D-Link DI-804 Broadband Gateway D-Link DI-713+/DI-714D-Link DI-604 Express Router DI-614+ , AirPlusXtremeG DI-624
MultiTech MultiTech
RF550VPN RouteFinderVPN MultiTech MultiTech
RF550VPN RouteFinderVPN NetgearNetgear MR814 Wireless Cable/DSL RouterFVS318 Cable/DSL ProSafe VPN Firewall RP614 4.12WGR614
NetgearNetgear MR814 Wireless Cable/DSL RouterFVS318 Cable/DSL ProSafe VPN Firewall RP614 4.12WGR614
Zyxel Zyxel P650R-11, 11H, 11HW, 13, 13H, 13HW P314+, 3.50(CX.0) ZyWALL 1, 3.60 will ZyWALL 10W, 10IIZyAIR B-2000, 3.50(HB.0)
Zyxel Zyxel P650R-11, 11H, 11HW, 13, 13H, 13HW P314+, 3.50(CX.0) ZyWALL 1, 3.60 will ZyWALL 10W, 10IIZyAIR B-2000, 3.50(HB.0)
SMCSMC7004VBR7004ABR Barricade7004VWBR Barricade Plus 7004WFW Barricade Plus Wireless
SMCSMC7004VBR7004ABR Barricade7004VWBR Barricade Plus 7004WFW Barricade Plus Wireless
HIWEST PLANETHIWEST PLANET
Persol PBR001, PBR002, Persol PBR003,PBR004 Persol PBRW001 Ver.PW 2.04
HIWEST PLANETHIWEST PLANET
Persol PBR001, PBR002, Persol PBR003,PBR004 Persol PBRW001 Ver.PW 2.04
I-O DATAI-O DATA
WN-B11/BBRH V1.01H WN-B11/BBRH-S V1.01H WN-B11/BBRH-S2 V1.01H
I-O DATAI-O DATA
WN-B11/BBRH V1.01H WN-B11/BBRH-S V1.01H WN-B11/BBRH-S2 V1.01H
LINKSYS LINKSYS
BEFSR11BEFSR41/BEFSU31/BEFSX41/BEFW11S4
LINKSYS LINKSYS
BEFSR11BEFSR41/BEFSU31/BEFSX41/BEFW11S4
MELCO MELCO
BLR2-TX4L BLR3-TX4, BLR3-TX4L WBR-B11, WBR-G54
MELCO MELCO
BLR2-TX4L BLR3-TX4, BLR3-TX4L WBR-B11, WBR-G54
NEC NEC Aterm BR1500H Aterm DR202C Aterm DR35FH/CE, DR35FH/GS Aterm WBR75H
NEC NEC Aterm BR1500H Aterm DR202C Aterm DR35FH/CE, DR35FH/GS Aterm WBR75H
PCI PCI
BLW-03FA BRL-04FA
PCI PCI
BLW-03FA BRL-04FA
TREND MICRO TREND MICRO
GateLockX200
TREND MICRO TREND MICRO
GateLockX200
YAMAHA YAMAHA RT56vRTA55iRTW65b, RTW65
YAMAHA YAMAHA RT56vRTA55iRTW65b, RTW65
NTT NTT
BA5000 Pro, BA8000 Pro MN7310, MN7320 , MN7530 MN8500 CB
NTT NTT
BA5000 Pro, BA8000 Pro MN7310, MN7320 , MN7530 MN8500 CB
…and more!!
Committee formed in mid-2002
Two-fold Charter 802.11 Access Point configuration – AP 1.0 spec Future IGD needs – IGD 2.0 spec
Initial focus mostly on Access Point spec Reached 1.0 in October 2003 Three reference implementations –
GlobeSpanVirata, LGE, Intel Aligned with IEEE TGi & WPA, WiFi Alliance work
Internet Gateway Device 2.0
Access Point DCP Simplify Access Point setup
Initial configuration Diagnostic information
Make enrollment of new clients easy Devices with no UI Guest clients Additional access points
Enable deployment of stronger link security Privacy important as WLAN usage increases Make link security setup easy, including 802.1x
Access Point UPnP Services
WLANAccessPointDevice
WLANConfigurationrequired
DeviceSecurityoptional
LinkAuthenticationoptional
RadiusClientoptional
Common way to programmatically access AP information SSID AP mode – repeater, stand-alone Valid channel set Physical location of the access point Auto-fallback rate, Possible data rates WEP encryption level, Default WEP key, WEP keys (1 to 4) Configuration Status Information on associated clients
Some of the configuration actions will be secured E.g. setting of WEP key
AP Configuration ServiceAP Configuration Service
Enrolling an 802.11 Client
Username: __Dev1__Password: ________
User prompted on PC1 for 802.1x authentication password
User enters info provided by Dev1 vendor (chassis/manual)
PC1 informs AP about successful validation
Console PCConsole PC
Device without UI easily enrolled into secure WLANDevice without UI easily enrolled into secure WLAN
Dev1 PC1
Secure 802.11 link establishedSecure 802.11 link established
IGD DCP 2.0
Scoping of work done
IPv6 support Existing services modified for IPv6 New services – firewall configuration
IGD v1 enhancements Support for configuring IP Forwarding Port mapping additions
Expected completion – Q1 ‘04
For the interconnected lifestyle