In your previous mail you wrote:
yes the tunnel endpoints would copy the flow label.
=> I agree this is reasonnable thing to do (copy the flow label
or any information that can be useful and should not be hiden
accounding to the security policy) but this makes the unicity
guarantee impossible (because the encapsulator hasn't the choice
of the flow label). IMHO it doesn't really matter but according
to your previous mail (and Steve's one) this is an issue.
Thanks
[EMAIL PROTECTED]
PS: I believe the flow label should be reserved for IntServ stuff
then SHOULD be set by the source, MAY be copied over tunnels,
SHOULD NOT be rewritten by routers. If we agree about the default
behaviour (ie. default value is zero or random) then we can be a
bit stronger, for instance MUST NOT be rewritten if the value is
not zero/default.
Things we cannot ask for are:
- a MUST for copying (security)
- a MUST NOT for rewriting (not protected by IPsec)
- a strong guarantee for unicity (we'll get only a best effort unicity)
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
