Re: [homenet] draft-fujiwara-smallest-homenet-01
Tim Chown <tjc@ecs.soton.ac.uk> Mon, 29 October 2012 14:03 UTC
Return-Path: <tjc@ecs.soton.ac.uk>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7CC021F85C0 for <homenet@ietfa.amsl.com>; Mon, 29 Oct 2012 07:03:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8b5nNZ9iAUuO for <homenet@ietfa.amsl.com>; Mon, 29 Oct 2012 07:03:28 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [IPv6:2001:630:d0:f102::25e]) by ietfa.amsl.com (Postfix) with ESMTP id A638A21F85B8 for <homenet@ietf.org>; Mon, 29 Oct 2012 07:03:27 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (localhost.ecs.soton.ac.uk [127.0.0.1]) by falcon.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id q9TE3MRo017710 for <homenet@ietf.org>; Mon, 29 Oct 2012 14:03:22 GMT
X-DKIM: Sendmail DKIM Filter v2.8.2 falcon.ecs.soton.ac.uk q9TE3MRo017710
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=ecs.soton.ac.uk; s=200903; t=1351519403; bh=wlbxxBSy0AOaqDFn/8gXeOR5Nlc=; h=Mime-Version:Subject:From:In-Reply-To:Date:References:To; b=JeIUc73bpfewmoudirVpCJfQDZ6lrNOqagJ/8Bi61aNtYuGL/ZtMMe5l8I9GpOnuI WDNk6pZxHhceWOLbxj2xyH8csh7a2lzgSbB5xL59o1Pu6Sy0VA/ZpAKqYYtKBdKNO/ XDQHSsdKH0ZpgJ+64QBgXxL2PsLKUUO3FdNSclPs=
Received: from gander.ecs.soton.ac.uk (gander.ecs.soton.ac.uk [2001:630:d0:f102::25d]) by falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [2001:630:d0:f102::25e]) envelope-from <tjc@ecs.soton.ac.uk> with ESMTP (valid=N/A) id o9SE3M0430601577dG ret-id none; Mon, 29 Oct 2012 14:03:23 +0000
Received: from tjc-vpn.ecs.soton.ac.uk (tjc-vpn.ecs.soton.ac.uk [152.78.236.241]) (authenticated bits=0) by gander.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id q9TE3LYV014588 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO) for <homenet@ietf.org>; Mon, 29 Oct 2012 14:03:21 GMT
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\))
From: Tim Chown <tjc@ecs.soton.ac.uk>
In-Reply-To: <20121029.192047.258110609.fujiwara@jprs.co.jp>
Date: Mon, 29 Oct 2012 14:03:28 +0000
Content-Transfer-Encoding: quoted-printable
Message-ID: <EMEW3|6e9f57ee893bec00d297300c700b25b9o9SE3M03tjc|ecs.soton.ac.uk|3133C308-ADE9-41C9-BFD8-1BAA822DCC21@ecs.soton.ac.uk>
References: <20121023.194755.229760265.fujiwara@jprs.co.jp> <23679.1351011484@obiwan.sandelman.ca> <20121029.192047.258110609.fujiwara@jprs.co.jp> <3133C308-ADE9-41C9-BFD8-1BAA822DCC21@ecs.soton.ac.uk>
To: "homenet@ietf.org Group" <homenet@ietf.org>
X-Mailer: Apple Mail (2.1499)
X-ECS-MailScanner: Found to be clean, Found to be clean
X-smtpf-Report: sid=o9SE3M043060157700; tid=o9SE3M0430601577dG; client=relay,ipv6; mail=; rcpt=; nrcpt=1:0; fails=0
X-ECS-MailScanner-Information: Please contact the ISP for more information
X-ECS-MailScanner-ID: q9TE3MRo017710
X-ECS-MailScanner-From: tjc@ecs.soton.ac.uk
Subject: Re: [homenet] draft-fujiwara-smallest-homenet-01
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Oct 2012 14:03:29 -0000
On 29 Oct 2012, at 10:20, fujiwara@jprs.co.jp wrote: >> From: Michael Richardson <mcr+ietf@sandelman.ca> >> fujiwara> I submitted draft-fujiwara-smallest-homenet-01 >> fujiwara> http://www.ietf.org/internet-drafts/draft-fujiwara-smallest-homenet-01.txt >> >> fujiwara> Although access control for home servers is very important, >> fujiwara> managements and setups of access controls are difficult for most of >> fujiwara> users. "Connecting a new node to the same link" is >> fujiwara> easiest way of >> fujiwara> access control. One of solutions is to use link-local >> fujiwara> addresses for >> fujiwara> communications of clients and servers. >> >> fujiwara> Is it in a scope of homenet WG ? >> fujiwara> Does anyone have interests for the idea ? >> >> It seems to me like it's already an accepted part of the homenet arch. >> There will be ULAs and GUAs, and ULAs will be preferred for local >> communication. > > Thanks. > > What I would like to say is that > - Access control in homenet servers is important > - There are no/few experts in many homenets. > - Easy configuration is required for homenet servers. > # For example, link based access control. > > My idea is that by using Link-local address positively, the > communication in a link and the communication to the Internet can be > separated, and a design becomes easy. (We don't need new protocols.) > > After submitting this draft, I considered new idea to set default ACL > as the same net (/64) of servers. There is some text in the homenet architecture draft that says similar things, but on the basis of using ULAs rather than link-locals. The other aspect from the homenet draft is the realm and border aspect. The homenet should be able to discover borders, both internal and external, between realms and apply appropriate policy between those realms. The assumption is that a subnet is the smallest realm. The latest version added a note that it is desirable that hosts/nodes can determine the realm they are in. Tim