[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D.ietf-v6ops-cpe-simple-security-09

To: james woodyatt <jhw@apple.com>
Subject: Re: I-D.ietf-v6ops-cpe-simple-security-09
From: Mark Baugher <mbaugher@cisco.com>
Date: Fri, 5 Mar 2010 06:26:15 -0800
Cc: IPv6 Operations <v6ops@ops.ietf.org>
In-reply-to: <A424A6DF-68F3-4338-833E-872490C6CB23@apple.com>
References: <D6F5ACD2-EB43-477E-9F48-AC3EDB3F7EB4@apple.com> <0E826480-B510-4907-9F38-6119C0D7523B@cisco.com> <929CA789-3B68-4B60-A623-311D072B4F17@cisco.com> <AA773B57-8CD1-4701-A39A-F2E10DEED35E@apple.com> <38CDE90C-7CF7-41B2-893E-E2811B3E51B1@cisco.com> <A424A6DF-68F3-4338-833E-872490C6CB23@apple.com>

While I don't think it is necessarily true that 'making site-local the DEFAULT multicast scope boundary places the subscriber network in the same organization-local scope as the provider network', I think its true that both site-local and organization-local need to stay on the 'interior' network.  So it would be better to say what is allowed to be forwarded to and from the exterior (i.e. global-scope multicast) and by implication, everything else is not (organization/site/link-local).

Mark

On Mar 4, 2010, at 5:08 PM, james woodyatt wrote:

> On Mar 4, 2010, at 16:50, Mark Baugher wrote:
>> On Mar 4, 2010, at 4:41 PM, james woodyatt wrote:
>>> 
>>> I will say that it doesn't make sense to me that my service provider should be allowed to join my organization-local scope multicast groups, or that I can join their organization-local scope groups.  That's what it would mean if we said 'site-local' here instead of what it currently says.
>> 
>> Site scope give us the same thing and I recommend that we use that instead.
> 
> I'm confused.  To what "same thing" are you referring?
> 
> I've explained that making site-local the DEFAULT multicast scope boundary places the subscriber network in the same organization-local scope as the provider network, whereas making organization-local the DEFAULT multicast scope boundary places the subscriber network and the provider network in different organization-local scopes.
> 
> In what way are subscribers and providers part of the same organization?  Why are they not separate organizations by DEFAULT?
> 
> 
> --
> james woodyatt <jhw@apple.com>
> member of technical staff, communications engineering
> 
> 
>

Follow-Ups:
- RE: I-D.ietf-v6ops-cpe-simple-security-09
  - From: "STARK, BARBARA H (ATTLABS)" <bs7652@att.com>

References:
- I-D.ietf-v6ops-cpe-simple-security-09
  - From: james woodyatt <jhw@apple.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Mark Baugher <mbaugher@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Fred Baker <fred@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: james woodyatt <jhw@apple.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Mark Baugher <mbaugher@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: james woodyatt <jhw@apple.com>

Prev by Date: Re: I-D.ietf-v6ops-cpe-simple-security-09
Next by Date: Re: I-D.ietf-v6ops-cpe-simple-security-09
Previous by thread: Re: I-D.ietf-v6ops-cpe-simple-security-09
Next by thread: RE: I-D.ietf-v6ops-cpe-simple-security-09
Index(es):
- Date
- Thread