IETF Logo Mail Archive

Re: [dhcwg] RFC4388: Revision or new option needed?

Niall O'Reilly <Niall.oReilly+IETF@ucd.ie> Thu, 03 June 2010 15:42 UTC

Return-Path: <Niall.oReilly+IETF@ucd.ie>
X-Original-To: dhcwg@core3.amsl.com
Delivered-To: dhcwg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C4D4B3A68BF for <dhcwg@core3.amsl.com>; Thu, 3 Jun 2010 08:42:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.63
X-Spam-Level:
X-Spam-Status: No, score=-3.63 tagged_above=-999 required=5 tests=[AWL=-0.231, BAYES_50=0.001, J_CHICKENPOX_63=0.6, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T6ByjGmgbTEA for <dhcwg@core3.amsl.com>; Thu, 3 Jun 2010 08:42:23 -0700 (PDT)
Received: from cali.ucd.ie (cali.ucd.ie [193.1.169.37]) by core3.amsl.com (Postfix) with ESMTP id E714A3A687E for <dhcwg@ietf.org>; Thu, 3 Jun 2010 08:42:20 -0700 (PDT)
Received: from conversion-daemon.cali.ucd.ie by cali.ucd.ie (Sun Java System Messaging Server 6.2-4.03 (built Sep 22 2005)) id <0L3G00J013LXLM00@cali.ucd.ie> (original mail from Niall.oReilly+IETF@ucd.ie) for dhcwg@ietf.org; Thu, 03 Jun 2010 16:42:06 +0100 (IST)
Received: from [137.43.64.131] (dhcp-892b4083.ucd.ie [137.43.64.131]) by cali.ucd.ie (Sun Java System Messaging Server 6.2-4.03 (built Sep 22 2005)) with ESMTPSA id <0L3G00G4Z3M37Q00@cali.ucd.ie> for dhcwg@ietf.org; Thu, 03 Jun 2010 16:42:04 +0100 (IST)
Date: Thu, 03 Jun 2010 16:42:03 +0100
From: Niall O'Reilly <Niall.oReilly+IETF@ucd.ie>
In-reply-to: <4.3.2.7.2.20100603105737.0305b180@email.cisco.com>
To: DHC-WG WG <dhcwg@ietf.org>
Message-id: <4C07CD4B.10608@ucd.ie>
MIME-version: 1.0
Content-type: text/plain; format="flowed"; charset="ISO-8859-1"
Content-transfer-encoding: 7bit
References: <AANLkTinFKJiLKGMZJ1TCcGXhCmBXgp9GUvGVaSqi98vu@mail.gmail.com> <4C07899B.50108@ucd.ie> <AANLkTinFKJiLKGMZJ1TCcGXhCmBXgp9GUvGVaSqi98vu@mail.gmail.com> <4.3.2.7.2.20100603105737.0305b180@email.cisco.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100423 Thunderbird/3.0.4
Subject: Re: [dhcwg] RFC4388: Revision or new option needed?
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Jun 2010 15:42:24 -0000

	Kim,

	Thanks for your thoughtful reply.

	In particular, I liked the following.

On 03/06/10 16:10, Kim Kinnear wrote (much more than this fragment):

> One thought that I've had for years but never acted upon would be
> to write a general draft for a new option which would be a
> "return to sender" option.  This option would override the normal
> addressing for a return DHCP packet(and would work on any packet,
> not just leasequery).  It would cause the return packet to be
> sent to the IP and port of the sender regardless of the "normal"
> RFC 2131/4388/etc.  mandated behavior.
>
> This would be useful for a number of scenarios (including
> testing).
>
> I could also imagine such an option have a couple of flags, one
> which said "send reply to incoming IP address", and another which
> said "send reply to incoming port".  That way you could get just
> the port behavior you want, but others could use it in general.

	Neat!

	Some reference to protection against indirect DoS attacks
	may need to be mentioned, along the lines of the "... SHOULD
	protect ..." matter in 4388.

> In any case, I would support a draft to fix up RFC4388 in some
> way that doesn't break existing clients that depend on the
> current behavior.

	Great!

	Thanks again, and best regards.


	Niall O'Reilly

v2.23.0 | Report a Bug | By Email