On 9/24/14, 7:46 AM, Michael Richardson wrote:
Michael Thomas <[email protected]> wrote:
>> Michael Thomas <[email protected]> wrote:
>> >> 2) ISP-provided router has to be willing to trust retail purchased
router,
>> >> or nothing works.
>>
>> > So what about the other way around? To what degrees should my homenet
trust
>> > ISP-maintained CPE?
>>
>> That's up to you. Seriously.
>> Your ISP-maintained CPE totally p0wns your network. If you don't trust
them,
>> even just a little bit, then you can't use their equipment.
> And there's nothing we can do about that, even if we define a boundary
> such that they are outside it?
You can run another router inside, and if the ISP router supports being a
DHCPv6-PD (such as proposed by HIP), you might win. Otherwise, you might as
well stick with IPv4+NAT, I think (maybe with v6 in a tunnel).
Me, I just buy by own router + modem, and I can't get a modem, many ISPs
understand when you want to turn their router into a modem only.
> I'm no expert here, but it seems to me that the normal first hop ISP
router
> doesn't
> have these characteristics of p0nwage for in-home traffic?
Right now, with IPv4 only, the ISP provided router (which usually includes
wifi) completely p0wns the house. I believe that when you get DSL from
free.fr, that they actually put up another ESSID which accepts VoIP traffic
From their mobile phone subscribers. That's why free.fr is so inexpensive;
the DSL subscribers provide the mobile phone infrastructure.
Sorry, I was talking about the upstream aggregation router, not the
in-home router.
That is, if I treat the ISP CPE the same way that I treat my ISP's
aggregation router,
I can define it as being "outside". That, of course, as you note above
means that you
can't use their wireless etc lest you open yourself to be p0wned by them.
As far as DHCPv6 PD, can you just convince their CPE to bridge and let
the aggregation
router do it, or perhaps just set up their CPE as a DHCP relay, or maybe
something else?
As I say I'm not an expert here so sorry if these are dumb questions.
Mike
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet
