RE: Broadband Forum liaison to IETF on IPv6 security
Mikael Abrahamsson <swmike@swm.pp.se> Fri, 06 November 2009 06:36 UTC
Return-Path: <swmike@swm.pp.se>
X-Original-To: ipv6@core3.amsl.com
Delivered-To: ipv6@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6BC1D3A685E; Thu, 5 Nov 2009 22:36:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zehUNLRFZ3SG; Thu, 5 Nov 2009 22:36:11 -0800 (PST)
Received: from uplift.swm.pp.se (ipv6.swm.pp.se [IPv6:2a00:801::f]) by core3.amsl.com (Postfix) with ESMTP id 431203A67B4; Thu, 5 Nov 2009 22:36:11 -0800 (PST)
Received: by uplift.swm.pp.se (Postfix, from userid 501) id 02DF19C; Fri, 6 Nov 2009 07:36:32 +0100 (CET)
Received: from localhost (localhost [127.0.0.1]) by uplift.swm.pp.se (Postfix) with ESMTP id 01C759A; Fri, 6 Nov 2009 07:36:32 +0100 (CET)
Date: Fri, 06 Nov 2009 07:36:31 +0100
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: "Dunn, Jeffrey H." <jdunn@mitre.org>
Subject: RE: Broadband Forum liaison to IETF on IPv6 security
In-Reply-To: <3C6F21684E7C954193E6C7C4573B762703676D7FCE@IMCMBX1.MITRE.ORG>
Message-ID: <alpine.DEB.1.10.0911060728160.22728@uplift.swm.pp.se>
References: <AFC1ACFB-FDFA-482C-AAF9-7995F5CEFE1F@broadband-forum.org> <F311A255-3303-4C9D-B270-D1D23DE31E31@cisco.com> <AF742F21C1FCEE4DAB7F4842ABDC511C11D7EE@XMB-RCD-114.cisco.com> <3C6F21684E7C954193E6C7C4573B762703676D7FCE@IMCMBX1.MITRE.ORG>
User-Agent: Alpine 1.10 (DEB 962 2008-03-14)
Organization: People's Front Against WWW
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
X-Mailman-Approved-At: Fri, 06 Nov 2009 00:11:52 -0800
Cc: Thomas Narten <narten@us.ibm.com>, List <ipv6@ietf.org>, SAVI@core3.amsl.com, "william.allen.simpson@gmail.com" <william.allen.simpson@gmail.com>, Hesham Soliman <hesham@elevatemobile.com>, Erik Nordmark <erik.nordmark@sun.com>, "savi-ads@tools.ietf.org" <savi-ads@tools.ietf.org>, Robin Mersh <rmersh@broadband-forum.org>, "6man-ads@tools.ietf.org" <6man-ads@tools.ietf.org>, "Susan Thomson (sethomso)" <sethomso@cisco.com>, "Fred Baker (fred)" <fred@cisco.com>, "v6ops-ads@tools.ietf.org" <v6ops-ads@tools.ietf.org>, IETF@core3.amsl.com, IPv6 Operations <v6ops@ops.ietf.org>, Mailing List <savi@ietf.org>, JINMEI Tatuya / 神明達哉 <jinmei@isl.rdc.toshiba.co.jp>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Nov 2009 06:36:12 -0000
On Thu, 5 Nov 2009, Dunn, Jeffrey H. wrote: > I may be missing something, but it appears that, in the cases described, > the two hosts downstream of two separate cable modems are off link to > each other. This brings up the question: Do there two cable modems > constitute two virtual interfaces, like two VLANs on the same physical > router interface? If so, this is an architectural, rather than an > implementation, question. Thoughts? This is basically "forced forwarding" for the L2 aggregation layer. It's often done on ETTH deployments as well as cable environments, in IPv4 it's done in conjunction with local-proxy-arp (in your IP subnet, the ISP router will answer all ARP requests with its own MAC and all traffic between clients within the subnet is done via the router which does not send out ICMP redirects). In my mind it's unsuitable for clients to run SLAAC in these environments and the only real alternative is full DHCPv6(-PD) with SAVI-like functionality in the L2 equipment along the way (in v4 the L2 equipment does DHCP-snooping and installs L3 filters accordingly). -- Mikael Abrahamsson email: swmike@swm.pp.se
- Fwd: Broadband Forum liaison to IETF on IPv6 secu… Fred Baker
- RE: Broadband Forum liaison to IETF on IPv6 secur… Hemant Singh (shemant)
- RE: Broadband Forum liaison to IETF on IPv6 secur… Dunn, Jeffrey H.
- RE: Broadband Forum liaison to IETF on IPv6 secur… Hemant Singh (shemant)
- RE: Broadband Forum liaison to IETF on IPv6 secur… Dunn, Jeffrey H.
- RE: Broadband Forum liaison to IETF on IPv6 secur… Mikael Abrahamsson
- Re: Fwd: Broadband Forum liaison to IETF on IPv6 … Thomas Narten
- Re: Broadband Forum liaison to IETF on IPv6 secur… Eric Levy-Abegnoli
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Dunn, Jeffrey H.
- Re: Broadband Forum liaison to IETF on IPv6 secur… james woodyatt
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Antonio Querubin
- RE: Broadband Forum liaison to IETF on IPv6 secur… Stark, Barbara
- Re: Broadband Forum liaison to IETF on IPv6 secur… Thomas Narten
- Re: Broadband Forum liaison to IETF on IPv6 secur… james woodyatt
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Dunn, Jeffrey H.
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Wes Beebee (wbeebee)
- RE: [savi] Broadband Forum liaison to IETF on IPv… Hemant Singh (shemant)
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Hemant Singh (shemant)
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Dunn, Jeffrey H.
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Hemant Singh (shemant)
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Dunn, Jeffrey H.
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Dunn, Jeffrey H.
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Hemant Singh (shemant)
- RE: Fwd: Broadband Forum liaison to IETF on IPv6 … Alan Kavanagh
- RE: [savi] Broadband Forum liaison to IETF on IPv… Alan Kavanagh