Hello,
As promised, here is my review.
I am a bit concerned that the document seems (at least in certain
places) to
focus solely on getting an incorrect default gateway. Rogue RAs
cause hosts
to assume wrong prefixes for their SLAAC addresses. In case of
mixing "good"
and "bad" RAs, the host might keep on using the "good" default
gateway, but
pick a wrong source address. This is highly likely to break, due to
ingress
filtering or lack of return routability.
Because of this, I am even more suspicious about the usefulness of
the DHCPv6
solution than the authors are.
Last, please s/Courmant/Courmont/ :)
On Tuesday 18 November 2008 21:22:02 Fred Baker, you wrote:
This is to initiate a two week working group last call of draft-
chown-
v6ops-rogue-ra-02.txt and draft-ietf-v6ops-ra-guard-01.txt. Please
read these drafts now. If you find nits (spelling errors, minor
suggested wording changes, etc), comment to the authors; if you find
greater issues, such as disagreeing with a statement or finding
additional issues that need to be addressed, please post your
comments
to the list.
We are looking specifically for comments on the importance of the
document as well as its content. If you have read the document and
believe it to be of operational utility, that is also an important
comment to make.
--
Rémi Denis-Courmont