Re: Requirements documents: edits v 1.06

[RJ Atkinson <rja@extremenetworks.com>]

On Tuesday, January 29, 2002, at 12:19 , Michel Py wrote:
> 10. Reverse Path Forwarding / filtering
> ---------------------------------------
>> Michel Py proposes to add a new requirement
>
> "IPv6 multihoming solutions MUST be compatible with sites that implement
> RPF checks or filtering that prevents traffic to be sent back from a
> different interface it came in."
>
> Possible modifications:
> 1. Please send text
> 2. Do nothing
> 3. add new requirement.
>
> Opinions about it:

	The above text is too specific and thus unduly narrows the range of 
solutions
to the underlying issue.  The underlying issue in this case is blocking 
obviously
forged source addresses from leaving/entering an given administrative 
domain.

Therefore, I object to the current text and
propose the following replacement text:

	IPv6 multihoming solutions MUST NOT preclude filtering out packets with
	obviously forged Source IP Address values at the administrative 
boundary
	of the multi-homed site.  The details of how such filtering is 
implemented
	MAY vary depending on the IPv6 multihoming solution, provided there is
     some mechanism for performing such filtering that works with the 
multihoming
	solution proposed.


Ran
rja@extremenetworks.com