Document Action: 'IPv4 and IPv6 Greynets' to Informational RFC
The IESG <iesg-secretary@ietf.org> Mon, 16 August 2010 18:26 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@core3.amsl.com
Delivered-To: ietf-announce@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DFDA03A6A0F; Mon, 16 Aug 2010 11:26:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.565
X-Spam-Level:
X-Spam-Status: No, score=-102.565 tagged_above=-999 required=5 tests=[AWL=0.034, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mf3z5kmZyJyh; Mon, 16 Aug 2010 11:26:29 -0700 (PDT)
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7E9A83A6A3C; Mon, 16 Aug 2010 11:26:28 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Document Action: 'IPv4 and IPv6 Greynets' to Informational RFC
X-Test-IDTracker: no
Message-ID: <20100816182628.16961.54644.idtracker@localhost>
Date: Mon, 16 Aug 2010 11:26:28 -0700
Cc: Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-announce>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Aug 2010 18:26:30 -0000
The IESG has approved the following document: - 'IPv4 and IPv6 Greynets' <draft-baker-v6ops-greynet-05.txt> as an Informational RFC This document has been reviewed in the IETF but is not the product of an IETF Working Group. The IESG contact person is Ron Bonica. A URL of this Internet Draft is: http://datatracker.ietf.org/doc/draft-baker-v6ops-greynet/ Technical Summary This document proposes a simple extension to the treatment of a datagram received by a router destined to a receiver that does not exist. Current specifications have the router queuing the datagram while obtaining the needed MAC address from Neighbor Discovery, and upon failure of that discarding the datagram and responding ICMP Unreachable. Under administrative control, the datagram could instead be forwarded, or summarized and the summary forwarded, to an appropriate collector for offline analysis. This could be used, as similar darknet traffic is used, to detect and learn about attacks in the network. In essence, any address in a network that is not currently instantiated can be used as as "dark" or "grey" network address without additional impact on the network. Working Group Summary The operators in the working group indicated that the capability would be interesting and useful. Document Quality The document suggests existing protocols that could be used to transport the information, but does not specify a protocol. A prototype implementation was created for testing purposes but has not at this point been committed back to the open source community. Personnel Tim Chown is shepherd.