[Hipsec-rg] HIPRG meeting minutes posted

oleg.ponomarev at hiit.fi (Oleg Ponomarev) Tue, 07 April 2009 12:57 UTC

From: "oleg.ponomarev at hiit.fi"
Date: Tue, 07 Apr 2009 15:57:50 +0300
Subject: [Hipsec-rg] HIPRG meeting minutes posted
In-Reply-To: <000401c9b77c$0eeadaf0$5e0c6f0a@china.huawei.com>
References: <000401c9b77c$0eeadaf0$5e0c6f0a@china.huawei.com>
Message-ID: <alpine.LFD.2.00.0904071530220.18931@stargazer.pc.infrahip.net>

Hi! On Tue, 7 Apr 2009, Xu Xiaohu wrote:

>> What happens when hosts in the network get infected and start to send 
>> SYN packets to random IP addresses at the max speed? To my experience, 
>> even one such host with GigabitEthernet connection can overload 
>> low-cost routers. What will be the performance of your mapping servers? 
>> What if there are thousands of such hosts?
>
> In fact, we can use some kind of overlay network (e.g. , the virtual
> aggregation approach(http://tools.ietf.org/html/draft-francis-intra-va-00).)
> to forward the packets once the cache is poisoned. That is one of the
> reasons why RANGI adopts the hierarchical host identifers.

When a host is infected, it is an exceptional situation *for*the*host*, 
but when some fraction of the end-hosts is infected, it is normal 
*for*a*network* and the infrastructure should operate routinely, not 
fall-back to another solution because of that.

-- 
Regards, Oleg.