Re: [pim] mboned: mroutesec: "pim passive" -mode (fwd)
Tom Pusateri <pusateri@juniper.net> Tue, 17 August 2004 22:39 UTC
Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA20698 for <pim-archive@lists.ietf.org>; Tue, 17 Aug 2004 18:39:47 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1BxCSc-0001ue-F7; Tue, 17 Aug 2004 18:29:42 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1BxCMa-0000jn-OP for pim@megatron.ietf.org; Tue, 17 Aug 2004 18:23:28 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA19943 for <pim@ietf.org>; Tue, 17 Aug 2004 18:23:25 -0400 (EDT)
Received: from colo-dns-ext2.juniper.net ([207.17.137.64]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1BxCSd-0005u0-DY for pim@ietf.org; Tue, 17 Aug 2004 18:29:46 -0400
Received: from merlot.juniper.net (merlot.juniper.net [172.17.27.10]) by colo-dns-ext2.juniper.net (8.12.3/8.12.3) with ESMTP id i7HMMnBm055670; Tue, 17 Aug 2004 15:22:49 -0700 (PDT) (envelope-from pusateri@juniper.net)
Received: from juniper.net (garnet.juniper.net [172.17.28.17]) by merlot.juniper.net (8.11.3/8.11.3) with ESMTP id i7HMMme03585; Tue, 17 Aug 2004 15:22:48 -0700 (PDT) (envelope-from pusateri@juniper.net)
Message-Id: <200408172222.i7HMMme03585@merlot.juniper.net>
To: Pekka Savola <pekkas@netcore.fi>
Subject: Re: [pim] mboned: mroutesec: "pim passive" -mode (fwd)
In-Reply-To: Message from Pekka Savola <pekkas@netcore.fi> of "Tue, 17 Aug 2004 17:32:20 +0300." <Pine.LNX.4.44.0408171728210.28510-100000@netcore.fi>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-ID: <32302.1092781368.1@juniper.net>
Date: Tue, 17 Aug 2004 15:22:48 -0700
From: Tom Pusateri <pusateri@juniper.net>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 34d35111647d654d033d58d318c0d21a
Cc: pusateri@juniper.net, pim@ietf.org, mboned@lists.uoregon.edu
X-BeenThere: pim@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Protocol Independent Multicast <pim.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:pim@ietf.org>
List-Help: <mailto:pim-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=subscribe>
Sender: pim-bounces@ietf.org
Errors-To: pim-bounces@ietf.org
This is a great operational tool. Several implementations already have this ability. Thanks, Tom In message <Pine.LNX.4.44.0408171728210.28510-100000@netcore.fi> you write: >PIM folks, > >We're considering adding a paragraph to >draft-ietf-mboned-mroutesec-02.txt to send a pointer to the >implementors that a "passive" PIM mode could be very useful (compare >this to "passive" OSPF), as below. > >Are the objections to this? Does this sound like a good idea to point >out? Quick comments would be appreciated ;-) > >5.4 Passive mode for PIM > > As described in the last paragraph of section 3, hosts are also able > to form PIM adjacencies and send disrupting traffic unless great > care is observed at the routers. This stems from the fact that most > implementations require that stub LANs with only one PIM > router must also have PIM enabled (to enable PIM processing of the > sourced data etc.) Such stub networks however do not require to > actually run the PIM protocol on the link. Therefore such > implementations should provide an option to specify that the > interface is "passive" with regard to PIM: no PIM packets are sent > or processed (if received), but hosts can still send and receive > multicast on that interface. > >(draft-ietf-mboned-mroutesec-02.txt is already past the IESG >Evaluation so I'd be extra interested in getting quick feedback >whether folks would find this objectionable). > > >---------- Forwarded message ---------- >Date: Sun, 1 Aug 2004 07:06:15 +0300 (EEST) >From: Pekka Savola <pekkas@netcore.fi> >To: mboned@lists.uoregon.edu >Subject: mboned: mroutesec: "pim passive" -mode > >Hi, > >mroutesec-02 is already pretty much done, only lacking approval from >the AD, but I thought of one last-minute addition that could possibly >be quite useful. > >See below for the problem of hosts interfering with PIM messaging: > > PIM-SM can be abused in the cases where RPF checks are not > applicable, in particular, in the stub LAN networks -- as spoofing > the on-link traffic is very simple. For example, a host could get > elected to become DR for the subnet, but not perform any of its > functions. A host can also easily make PIM routers on the link stop > forwarding multicast by sending PIM Assert messages. This implies > that a willful attacker will be able to circumvent many of the > potential rate-limiting functions performed at the DR (as one can > always send the messages yourself). The PIM-SM specification, > however, states that these messages should only be accepted from > known PIM neighbors; if this is performed, the hosts would first have > to establish a PIM adjacency with the router. Typically, adjacencies > are formed with anyone on the link, so a willful attacker would have > a high probability of success in forming a protocol adjacency. These > are described at some length in [1], but are also considered out of > scope of this memo. > >My suggestion is to add a recommendation that implementations include >a feature to designate an interface "passive": multicast routing is >still enabled, but no PIM messages will be processed. This would be >very applicable in stub networks with only one PIM router. (This >could be achieved with ACLs as well -- just blocking all PIM packets, >but this would be cumbersome). > >Opinions? Would this be useful? > >(Recently, a nice document on MLD problems was also written -- I also >though to add a pointer to that in th eprocess: >draft-daley-magma-smld-prob-00.txt) > >-- >Pekka Savola "You each name yourselves king, yet the >Netcore Oy kingdom bleeds." >Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings > >_______________________________________________________________ >user interface: http://darkwing.uoregon.edu/~llynch/mboned.html >web archive: http://darkwing.uoregon.edu/~llynch/mboned/ > > > >_______________________________________________ >pim mailing list >pim@ietf.org >https://www1.ietf.org/mailman/listinfo/pim _______________________________________________ pim mailing list pim@ietf.org https://www1.ietf.org/mailman/listinfo/pim
- [pim] pim-sm-v2-new-09 and PMBR issues Pekka Savola
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pavlin Radoslavov
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pekka Savola
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pavlin Radoslavov
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pekka Savola
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pavlin Radoslavov
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pekka Savola
- Re: [pim] pim-sm-v2-new-09 and PMBR issues John Zwiebel
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pavlin Radoslavov
- Re: [pim] pim-sm-v2-new-09 and PMBR issues Pekka Savola
- Re: [pim] mboned: mroutesec: "pim passive" -mode … Tom Pusateri