[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Fwd: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt

To: Multi6 List <multi6@ops.ietf.org>
Subject: Re: Fwd: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt
From: David Gethings <davidg@pipex.net>
Date: Wed, 20 Oct 2004 15:21:10 +0100
In-reply-to: <DC41AA3D-21E4-11D9-AF09-000D93ACD0FE@it>
References: <DC41AA3D-21E4-11D9-AF09-000D93ACD0FE@it>
User-agent: KMail/1.7

On Tuesday 19 October 2004 16:38, marcelo bagnulo braun wrote:
> Comments are welcome
Overall a good draft. But I do have one concern. In section 5.2 you propose 3 
source address selection methods. The third suggests that a host try with all 
possible source addresses simultaneously that are within scope.

While this offers the advantage of providing best path selection - as you 
point out in your draft - it could also provides a ready made DOS'ing 
mechanism. The DOS'er simply has to clear the SA cache and send a packet, 
cira repeat.

My apologies if this security consideration is already addressed in another 
RFC/ID.

Cheers

Dg

Follow-Ups:
- Re: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>

References:
- Fwd: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>

Prev by Date: Fwd: I-D ACTION:draft-bagnulo-multi6dt-functional-dec-00.txt
Next by Date: I-D ACTION:draft-ietf-multi6-v4-multihoming-02.txt
Previous by thread: Re: Selecting Source Address and Selecting Path (was: Re: Fwd: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt)
Next by thread: Re: I-D ACTION:draft-huitema-multi6-addr-selection-00.txt
Index(es):
- Date
- Thread