[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-v6ops-v6inixp-04.txt WGLC

To: Andy Davidson <andy@nosignal.org>
Subject: Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
From: Eduardo Ascenço Reis <eduardo@intron.com.br>
Date: Wed, 20 Jan 2010 00:54:52 -0200
Cc: v6ops@ops.ietf.org
In-reply-to: <308E2D25-1AEC-4B90-8FC3-6BCFFFA9DCDC@nosignal.org>
References: <1F22A806-8341-4FB0-8135-3518574C7661@cisco.com> <308E2D25-1AEC-4B90-8FC3-6BCFFFA9DCDC@nosignal.org>

2010/1/18 Andy Davidson <andy@nosignal.org>:

> 6 - Route servers - md5 should be considered - I think this advice should be
> taken out, as this recommendation is not generally accepted, and the
> functioning/configuration of a route-server is well outside the scope of
> this document.

I agree with Andy and also suggest that the following sentence to be
removed from the document:

"The use of MD5 [RFC2385] or IPSEC [RFC4301] to
   authenticate the BGP sessions and the use of GTSM (The Generalized
   TTL Security Mechanism) [RFC3682] should be considered."

I understand that these mechanisms may help securing the BGP session,
but also that they do not fit well on an IPv6 operational document.

> 6 - Route servers - we may like to publish some information on v6 filtering
> to promote good hygiene between route-server peers.

I agree.

I also suggest to replace the word studied with considered on the
following sentence:
"Because of the size of the IPv6 space, limiting the maximum number of IPv6
   prefixes in every session should be studied."

[]s,

-- 

Eduardo Ascenço Reis

References:
- draft-ietf-v6ops-v6inixp-04.txt WGLC
  - From: Fred Baker <fred@cisco.com>
- Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
  - From: Andy Davidson <andy@nosignal.org>

Prev by Date: Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
Next by Date: Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
Previous by thread: Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
Next by thread: Re: draft-ietf-v6ops-v6inixp-04.txt WGLC
Index(es):
- Date
- Thread