Document Action: 'IPv4 and IPv6 Greynets' to Informational RFC

The IESG <> Mon, 16 August 2010 18:26 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id DFDA03A6A0F; Mon, 16 Aug 2010 11:26:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -102.565
X-Spam-Status: No, score=-102.565 tagged_above=-999 required=5 tests=[AWL=0.034, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id mf3z5kmZyJyh; Mon, 16 Aug 2010 11:26:29 -0700 (PDT)
Received: from [] (localhost []) by (Postfix) with ESMTP id 7E9A83A6A3C; Mon, 16 Aug 2010 11:26:28 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <>
To: IETF-Announce <>
Subject: Document Action: 'IPv4 and IPv6 Greynets' to Informational RFC
X-Test-IDTracker: no
Message-ID: <20100816182628.16961.54644.idtracker@localhost>
Date: Mon, 16 Aug 2010 11:26:28 -0700
Cc: Internet Architecture Board <>, RFC Editor <>
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 16 Aug 2010 18:26:30 -0000

The IESG has approved the following document:
- 'IPv4 and IPv6 Greynets'
  <draft-baker-v6ops-greynet-05.txt> as an Informational RFC

This document has been reviewed in the IETF but is not the product of an
IETF Working Group.

The IESG contact person is Ron Bonica.

A URL of this Internet Draft is:

Technical Summary 

This document proposes a simple extension to the treatment of a datagram
received by a router destined to a receiver that does not exist. Current
specifications have the router queuing the datagram while obtaining the
needed MAC address from Neighbor Discovery, and upon failure of that
discarding the datagram and responding ICMP Unreachable. Under
administrative control, the datagram could instead be forwarded, or
summarized and the summary forwarded, to an appropriate collector for
offline analysis. This could be used, as similar darknet traffic is used,
to detect and learn about attacks in the network. In essence, any address
in a network that is not currently instantiated can be used as as "dark"
or "grey" network address without additional impact on the network.

Working Group Summary 

The operators in the working group indicated that the capability would be
interesting and useful.

Document Quality 

The document suggests existing protocols that could be used to transport
the information, but does not specify a protocol. A prototype
implementation was created for testing purposes but has not at this point
been committed back to the open source community.


Tim Chown is shepherd.