On Thu, 3 Jul 2014, Douglas Otis wrote:
Since mDNS is unable to make determinations regarding the ability of a device to safely interact with the Internet, an overlay approach could be taken. Although details are missing from the Hybrid Unicast/Multicast DNS-Based Service Discovery draft, use of ULAs can better establish a secure separation than can a split-horizon. DNS was
I would very much prefer to see a solution where you can have policy to limit what is being published and to where, rather than the very binary "use ULAs for Internal resources". Apart from the fact that I do not like ULAs, I would also like to see more granularity and to enable the possibility to have zoning within the home network, for instance to have guest networks.
So we need to enable possibility to control propagation of service discovery information, we need packet filtering, and we also need some kind of "identity" for the devices so they can interact with all of this.
-- Mikael Abrahamsson email: [email protected] _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
