[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Handling rogue RA feedback

To: stig.venaas@uninett.no
Subject: Re: Handling rogue RA feedback
From: itojun@itojun.org (Jun-ichiro itojun Hagino)
Date: Fri, 17 Aug 2007 08:10:29 +0900 (JST)
Cc: v6ops@ops.ietf.org
In-reply-to: Your message of "Thu, 16 Aug 2007 11:23:24 +0200" <46C4178C.1070302@uninett.no>
References: <46C4178C.1070302@uninett.no>

> > 	- KAME rafixd: shoot down rogue RAs by announcing against those rogue
> > 	  RAs with 0 prefix/router lifetime
> > 	  PROS: easy to deploy, maybe we should ship it with *BSD
> > 	  CONS: need to take down the source of rogue RA anyways
> 
> I like this one, but isn't the 2 hour rule a problem here? If the stored
> lifetime is more than 2 hours and the received is less...

	i was not clear enough.

	KAME rafixd erases rogue router from the default router list on
	nodes that are on the same, by transmitting fake RA with router
	lifetime of 0.

	specwise, 2 hour rule is about prefix lifetime, not router lifetime.
	so there's no issue with 2 hour rule router lifetime.

	wrt on-link determination, i'd better summon jinmei :-)

itojun
# ipv6samurais.com: saving the world with code and sword

References:
- Re: Handling rogue RA feedback
  - From: Stig Venaas <stig.venaas@uninett.no>

Prev by Date: Re: Handling rogue RA feedback
Next by Date: Re: Handling rogue RA feedback
Previous by thread: Re: Handling rogue RA feedback
Next by thread: Re: Handling rogue RA feedback
Index(es):
- Date
- Thread