> >> 1. The TTL of RS is < 255, which tells the HA it is from off-link.
> >
> > Or a spoofed RS. When a router receives a spoofed RS it would presumbly
> > log an event and/or increase a counter.
> > With your overloading proposal it can't tell the difference
> > between a spoofed one and a mobile node using an RA.
>
> Enlighten me, how exactly does creating a new message type solve this
> problem? It seems to me that it just shifts it to a different ICMP #.
It doesn't make the spooing issue go away (I didn't claim it did)
but allows the current rules for the current ICMP types to stay unchanged
including any logging of ttl < 255 packets.
The new message types need to have rules that deal with spoofing one
way or another. But this might e.g. be to mandate some IP level security
mechanism for all messages having the new types.
Erik
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
