[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback

To: Mark Smith <ipng@69706e6720323030352d30312d31340a.nosense.org>
Subject: Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
From: james woodyatt <jhw@apple.com>
Date: Fri, 6 Aug 2010 21:12:51 -0700
Cc: IPv6 Operations <v6ops@ops.ietf.org>, mboned@ietf.org
In-reply-to: <20100807101911.2dbbd430@opy.nosense.org>
References: <20100728072319.GU26000@cisco.com> <430696D0-EA0E-438A-B46F-D6DCD00652E0@apple.com> <20100728080009.GZ26000@cisco.com> <99D85A94-0DDF-4950-8151-035024CE8105@apple.com> <0D448E93-070E-478D-911F-60606DFE3441@cisco.com> <62860430-A9D7-46E2-8600-298810C18089@apple.com> <20100807101911.2dbbd430@opy.nosense.org>

On Aug 6, 2010, at 17:49, Mark Smith wrote:
> 
> To avoid using a global scope for that, it probably wouldn't be hard to re-originate the content at the IPv6 layer within the ISP's network, changing it's scope at the same time.

I fail to understand why this should be viewed as necessary.  If service providers feel the need to re-originate content at a local interface address, they can certainly do so without changing the multicast addressing scope.  They could easily just retransmit with a distinguished global scope address in the RFC 3305 range corresponding to a route filter at their transit borders.

Nothing requires service providers to advertise every global scope multicast route from their network interior and subscribers all the way out to the public default free zone.  In fact, I'd be shocked and surprised if they did.

That said, I'm sorta guessing that more interest in reserving some value of SCOP > 8 for subscriber aggregation purposes will happen when more interest in multicast routing arises among service providers, but I'm not sure MZAP [RFC 2776] is well-specified for operation across AS boundaries.

(Meanwhile, there is RFC 2908, which makes my head hurt.)

> "LAN.MLD.ROUTED. The device MUST default to not sending MLD messages for scope of 0 through 8."

This says gateways do not join multicast groups on their LAN interfaces unless SCOP > 8, but it says nothing about forwarding behavior.  Otherwise, this isn't that different from what our draft says.

Our draft says that multicast-capable residential gateways should default to acting as an organization-local zone boundary, i.e. they are multicast routers that only *forward* multicast with SCOP > 8.  They can still join multicast narrower-scope groups on the LAN, but they do not forward them into the service provider network.  Likewise, they can join narrower-scope groups on their WAN interface, but they do not forward them into the subscriber LAN.

That's because it's the forwarding behavior we care about.

--
james woodyatt <jhw@apple.com>
member of technical staff, communications engineering

References:
- Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
  - From: james woodyatt <jhw@apple.com>
- Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
  - From: james woodyatt <jhw@apple.com>
- Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
  - From: Fred Baker <fred@cisco.com>
- Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
  - From: james woodyatt <jhw@apple.com>
- Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
  - From: Mark Smith <ipng@69706e6720323030352d30312d31340a.nosense.org>

Prev by Date: Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
Next by Date: Re: Avoiding the terminology confusion with NAT66
Previous by thread: Re: draft-ietf-v6ops-cpe-simple-security-12.txt feedback
Next by thread: bar-bof Multihoming with multiple prefixes without NAT66
Index(es):
- Date
- Thread