[magma] AD Review comments on draft-ietf-magma-mrdisc-02.txt
Margaret Wasserman <margaret@thingmagic.com> Sun, 10 October 2004 17:41 UTC
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA26784; Sun, 10 Oct 2004 13:41:17 -0400 (EDT)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CGhrW-0003Tw-F9; Sun, 10 Oct 2004 13:52:02 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CGhet-0000Wx-ME; Sun, 10 Oct 2004 13:38:59 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CGhbX-00004s-Py for magma@megatron.ietf.org; Sun, 10 Oct 2004 13:35:31 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAB26197 for <magma@ietf.org>; Sun, 10 Oct 2004 13:35:28 -0400 (EDT)
Received: from mail.thingmagic.com ([207.31.248.245] helo=thingmagic.com) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CGhlt-0003O6-H6 for magma@ietf.org; Sun, 10 Oct 2004 13:46:14 -0400
Received: from [69.173.190.121] (account margaret HELO [192.168.1.103]) by thingmagic.com (CommuniGate Pro SMTP 4.1.8) with ESMTP-TLS id 170779; Sun, 10 Oct 2004 13:30:21 -0400
Mime-Version: 1.0
X-Sender: margaret@mail.thingmagic.com
Message-Id: <p06020403bd8f2207f8fc@[192.168.1.103]>
In-Reply-To: <414EA518.3050405@cisco.com>
References: <414EA518.3050405@cisco.com>
Date: Sun, 10 Oct 2004 13:34:27 -0400
To: magma@ietf.org
From: Margaret Wasserman <margaret@thingmagic.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 82c9bddb247d9ba4471160a9a865a5f3
Cc: Thomas Narten <narten@us.ibm.com>
Subject: [magma] AD Review comments on draft-ietf-magma-mrdisc-02.txt
X-BeenThere: magma@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Multicast and Anycast Group Membership <magma.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/magma>, <mailto:magma-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:magma@ietf.org>
List-Help: <mailto:magma-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/magma>, <mailto:magma-request@ietf.org?subject=subscribe>
Sender: magma-bounces@ietf.org
Errors-To: magma-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 02ec665d00de228c50c93ed6b5e4fc1a
Hi All, I sent the attached comments regarding draft-ietf-magma-mrdisc-02.txt to the authors and WG chairs on October 1st. I try to cc: the WG on substantive AD review comments, and I'm not sure why I didn't in this case. Anyway, you can read my comments below. I've placed the document in "AD Review - Revised ID Needed" state, and I am waiting for a resolutions to my issues before sending this document to IETF Last Call. Comments are welcome! Margaret --- Substantive Comments: This draft introduces the concept of a "Multicast Router Termination" message, but the security considerations section doesn't include any mention of this message and how/if spoofed Multicast Router Termination messages could be used in DoS attacks. In general, I think that the Security Considerations section is somewhat inadequate. If this mechanism introduces new security concerns that don't exist with existing mechanisms, I don't think it is good enough to simply declare them out of scope. Also, I don't fully understand how the SEND work would apply here to resolve the described problems. The SEND WG is done, so you would need to describe here how SEND can be used to mitigate the identified risks. Editorial Comments: 3.1.5 NeighborDeadInterval This variable is the maximum time (in seconds) allowed to elapse before a neighbor can be declared unreachable. In order for all devices to have a consistent state, it is necessary for the MaxAdvertisementInterval to be configured consistently in all devices on the subnet. >> This is referring specifically to when you will determine that a neighboring multicast router has become unreachable, right? If so, I think that could be clearer. All Advertisements are sent as IGMP (for IPv4) or MLD (for IPv6) messages to the All-Snoopers multicast address. These messages SHOULD be rate-limited. >> You include the above text for advertisement message, but not for solicitations or termination messages. I know it is kind of obvious, but I'd consider moving this text to the overview section and changing it to say that all MRD messages are sent this way. _______________________________________________ magma mailing list magma@ietf.org https://www1.ietf.org/mailman/listinfo/magma
- [magma] Request To Publish: draft-ietf-magma-mrdi… Isidor Kouvelas
- [magma] AD Review comments on draft-ietf-magma-mr… Margaret Wasserman