>> (I see that hnet-full in OpenWRT/LEDE installs a thing called >> "minimalist-pcproxy", but I have no idea what it does and whether it >> handles multiple edge routers correctly.)
> It does. Excellent. > Downside with it is that it is based on essentially non-IETF stuff (my > expired draft) [...] (as plain PCP proxy specified in the PCP WG is not > up to the multiprefix part of the task, and is also overly complex). Thanks for the info. I'll try to grok when I next have some hacking time. >> [PCP] actually makes sense > Does it? Assuming you want to allow hole punching, PCP makes sense. Whether you want to allow hole punching in the first place is a separate discussion. > Now that I have thought about it more, I do not control all devices in > my home that well to start with (hello, embedded things that talk IP), > and I am not that keen to allow them to punch holes in > firewall. Obviously, they can do call-home anyway Uh-huh. I don't see how punching holes in the firewall is worse than allowing access to the Global Internet. > (if they are not on a restricted access subnet at any rate) Exactly. All my untrusted devices, I mean, my one untrusted device lives on a dedicated VLAN which is carefully firewalled. > - ohybridproxy (only really scalable and sensible IPv6 rdns source that > I am aware of, given nodes talk mdns) Noted, thanks for the opinion. I still don't understand how it works (who gets port 53? how are data from multiple links merged?), but I intend to do my homework. -- Juliusz _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
