IETF Logo Mail Archive

Re: [v6ops] new draft: draft-elkins-v6ops-multicast-virtual-nodes

Nalini Elkins <nalini.elkins@insidethestack.com> Fri, 19 September 2014 23:37 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 837B51A88FA for <v6ops@ietfa.amsl.com>; Fri, 19 Sep 2014 16:37:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CGUMpmAeETzz for <v6ops@ietfa.amsl.com>; Fri, 19 Sep 2014 16:37:08 -0700 (PDT)
Received: from nm18-vm0.bullet.mail.ne1.yahoo.com (nm18-vm0.bullet.mail.ne1.yahoo.com [98.138.91.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 144A71A88F9 for <v6ops@ietf.org>; Fri, 19 Sep 2014 16:37:08 -0700 (PDT)
Received: from [98.138.101.132] by nm18.bullet.mail.ne1.yahoo.com with NNFMP; 19 Sep 2014 23:37:07 -0000
Received: from [98.138.89.197] by tm20.bullet.mail.ne1.yahoo.com with NNFMP; 19 Sep 2014 23:37:07 -0000
Received: from [127.0.0.1] by omp1055.mail.ne1.yahoo.com with NNFMP; 19 Sep 2014 23:37:07 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 315408.93718.bm@omp1055.mail.ne1.yahoo.com
Received: (qmail 73445 invoked by uid 60001); 19 Sep 2014 23:37:07 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1411169827; bh=5qWiPe19B9e/4pKpcz2uVrwYbL/B3mYsCOGOZe1lECM=; h=References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=U2H4aW0v2Ax6QT9uPogWTjJxxNyaVSA50XeD/tg7ZYyX7KeShSEzVzp98vehibrgtde3jKiR8xfo5qNwjqSLtQ/y8xRlmpbnT90JN74NB6cQbmzhTQ/J5HpEWmhTlKX0weytQJ/2BcTXoTokwTidiEcH4Xs6aKBsC6y0/Jn7yi0=
X-YMail-OSG: 2wNCKLgVM1my1mEZpXaWvO0NxZJN7.pAAlh5.JgKCojt50O 8SDKg0MseYT1EvwyaIk78Liq4dfocz_0q3YAlXhVUiJ2JhUDUkmRZwzgUhmR 8sLtSmZPGCUnOh2Mqyj4hP2_UUpCFIxAGBHLTNtbXnCXyIhapCuojAuhCIJ3 BYEgs.idsGO4arBAWC9lPM2sH72t47iwGVRSk_gBFK_XZbFMEIV04e6RplFW BWaZ4UlHQwgn220XCZ0VYi9cRDlYzwe835Ev5T4exg2P7iASSf7EWMkHndqk HrAOuGwQfIr5CNjnnhfQJefI0eCtU56FTBzGpGU3P9yTVbIGutj6kZ13mm0g Vd1NNOPR6agjmZzQLHmvYK7t6xhdUpWHCcdKy_W8XPsK3yuEZ26jPH7G5IML _HfK21E5vnjVMZYYKSRfe.PrV1lO9anEyt8HftNjXFh3dgCg1RfJazE11dQK Wri6mIvgLYGeUN4jpudCz5d20AeM6Cg_bNQSTjxwuyst._ZArLPycPdhUjI4 obOt7UcMb24k9NtHrA4pzXFsM_0Ue50JAuqf4ORXGn05a0e_rra_yzKk-
Received: from [24.130.244.175] by web125102.mail.ne1.yahoo.com via HTTP; Fri, 19 Sep 2014 16:37:07 PDT
X-Rocket-MIMEInfo: 002.001, Cgo.ZGlyZWN0ZWQgYnJvYWRjYXN0IHBpbmcgb24gaXB2NCBpcyBoYXJtZnVsIGJlY2F1c2UgaXQgdXNlcyBnbG9iYWwKPmFkZHJlc3NlcywgYW5kIHRoZSBkaXJlY3RlZCBicm9hZGNhc3QgcGluZyBjYW4gYmUgaW5pdGlhdGVkIHJlbW90ZWx5IGFuZAo.Y2FuIGJlIHVzZWQgdG8gdGFyZ2V0IHRoaXJkIHBhcnR5IGFkZHJlc3Nlcy4gIGZmMDI6OjEgaXMgbGluay1sb2NhbCBvbmx5LAo.d2hpY2ggbWVhbnMgdGhhdCBkaXJlY3RlZCBicm9hZGNhc3QgcGluZyBjYW4gb25seSBiZSBpbml0aWF0ZWQgbG9jYWxseS4BMAEBAQE-
X-Mailer: YahooMailWebService/0.8.203.696
References: <201409191147.s8JBl1Fe016458@irp-lnx1.cisco.com> <CAPi140O_WkcS9uFCSK0+tVDF3Z1sB4_UF5Zv9kpNEMh7m94Vww@mail.gmail.com> <1411154671.21942.YahooMailNeo@web125102.mail.ne1.yahoo.com> <CAPi140Ob+TeDyYfw_1A2Q55gEF5-rNrLynQ1LkGHOVnGcNcpLA@mail.gmail.com> <1411164118.44574.YahooMailNeo@web125106.mail.ne1.yahoo.com> <541CB43F.2040508@foobar.org>
Message-ID: <1411169827.72819.YahooMailNeo@web125102.mail.ne1.yahoo.com>
Date: Fri, 19 Sep 2014 16:37:07 -0700
From: Nalini Elkins <nalini.elkins@insidethestack.com>
To: Nick Hilliard <nick@foobar.org>, "v6ops@ietf.org" <v6ops@ietf.org>
In-Reply-To: <541CB43F.2040508@foobar.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Archived-At: http://mailarchive.ietf.org/arch/msg/v6ops/dhrBZyCl-ToyLD90w75OhPLPCzw
Subject: Re: [v6ops] new draft: draft-elkins-v6ops-multicast-virtual-nodes
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Nalini Elkins <nalini.elkins@insidethestack.com>
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Sep 2014 23:37:09 -0000


>directed broadcast ping on ipv4 is harmful because it uses global
>addresses, and the directed broadcast ping can be initiated remotely and
>can be used to target third party addresses.  ff02::1 is link-local only,
>which means that directed broadcast ping can only be initiated locally.  If
>the operator follows BCP38, the replies will stay local so the scope for
>damage is minimal.  The two aren't comparable.

I think the similarity has to do with the potential for amplification.

The other point we were trying to make is that "replies staying local" is not really harmless.

In IPv6 subnets, there may be many other nodes on link with you.   We were using the
Ping to FF02::1 as a graphic example of how it is possible to impact both yourself and
other nodes without even meaning to.


Nick




_______________________________________________
v6ops mailing list
v6ops@ietf.org
https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email