On Mon, Apr 20, 2009 at 06:08:40PM -0400, Sam Hartman wrote:
I'd actually appreciate focus on the multiple interfaces (or multiple
network providers) problem. I think that attacking this in full
generality is well beyond what we can manage. I think even a focused
problem may prove challenging.
I'm not sure if this agrees or disagrees with your view;
I think the problem being skirted, and the one that needs resolution,
is any situation where a host receives configuration from two
different administrative domains it straddles, regardless of
A single administrative domain that wishes to present inconsistent
configuration seems like a problem that can be solved by having the
domain present itself as two (or more).
At present, and core to the problem of IPv6 casual interconnection
security, there are no mechanisms for network related configuration
to identify its source domain. This suggests interim solutions that
attempt to divine a unique source domain, and the algorithm(s) to
digest configuration across domains, as well as long-term experiments
(?) to seek concise advertisements of a given configuration's source
David W. Hankins "If you don't do it right the first time,
Software Engineer you'll just have to do it again."
Internet Systems Consortium, Inc. -- Jack T. Hankins
Description: PGP signature
Ietf mailing list