Hello.
RFC 2463 section 2.4 (e) specifies that Packet Too Big can be sent as a
reply to a multicast message. Is this a source of a DoS problem? I.e.
send a message with a large MTU to a large multicast group, lie about the source
address, and flood real node with the forged source address with lots of traffic.
All this with the cost of sending a single packet.
Rate limitations are discussed in part (f) but I don't think that helps
in this situation as each individual recipient would only be sending
one ICMP message.
The same situation exists also for the Parameter Problem ICMP message.
Jari Arkko
Ericsson
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
