[Gen-art] Late comment on draft-ietf-bfd-seamless-ip-04
Elwyn Davies <elwynd@dial.pipex.com> Wed, 04 May 2016 08:44 UTC
Return-Path: <elwynd@dial.pipex.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0311812D09E; Wed, 4 May 2016 01:44:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.6
X-Spam-Level:
X-Spam-Status: No, score=-102.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, USER_IN_WHITELIST=-100] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PoYI53tx9MDx; Wed, 4 May 2016 01:44:01 -0700 (PDT)
Received: from b.painless.aa.net.uk (b.painless.aa.net.uk [IPv6:2001:8b0:0:30:5054:ff:fe5e:1643]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 532CE12D09C; Wed, 4 May 2016 01:44:01 -0700 (PDT)
Received: from 6.3.e.3.9.7.3.7.f.6.c.a.6.9.4.3.1.0.0.0.f.b.0.0.0.b.8.0.1.0.0.2.ip6.arpa ([2001:8b0:bf:1:3496:ac6f:7379:3e36]) by b.painless.aa.net.uk with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.77) (envelope-from <elwynd@dial.pipex.com>) id 1axsPW-0006Jx-P9; Wed, 04 May 2016 09:43:59 +0100
To: draft-ietf-bfd-seamless-ip.all@ietf.org
From: Elwyn Davies <elwynd@dial.pipex.com>
Message-ID: <5729B64F.6050501@dial.pipex.com>
Date: Wed, 04 May 2016 09:43:59 +0100
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.7.2
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/gen-art/sLgCz5ZBXIKCTDo9oDuxSZ_Lkxg>
Cc: General area reviewing team <gen-art@ietf.org>
Subject: [Gen-art] Late comment on draft-ietf-bfd-seamless-ip-04
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 May 2016 08:44:04 -0000
Hi. While reviewing draft-ietf-l2tpext-sbfd-discriminator-05 for gen-art, I came across a 'common mode' issue with multiple discriminators that lead me to check the various other seamless BFD drafts. In the process I noticed the last paragraph in Section 5.1.1 of draft-ietf-bfd-seamless-ip-04 contained the following text: > This also requires S-BFD control packets not be dropped by the > responder node due to TTL expiry. Thus implementations on the > responder MUST allow received S-BFD control packets taking TTL expiry > exception path to reach corresponding reflector BFD session. This struck me as out of line with (AFAICS) every existing IP implementation. TTL expiry checking is typically deep in the stack and making an exception for this one case is (IMO) likely to be problematic. It may even be a security issue. Have I misunderstood what is going on here? Regards, Elwyn
- [Gen-art] Late comment on draft-ietf-bfd-seamless… Elwyn Davies
- Re: [Gen-art] Late comment on draft-ietf-bfd-seam… Carlos Pignataro (cpignata)