Re: nonexisting destination on p2p link

Wed, 25 Apr 2001 22:52:15 -0700 

Hi, 

I think theorically REDIRECT should be sent over the p2p link, but
dropping the packet is a better sanity check !!
> 
> suppose we have routers "A" and "B", and they are connected by some
> p2p link (tunnel, ATM, whatever).
> 
> case 1: consider link local address (La and Lb).
> 
>         A (La) --- (Lb) B
> 
> A has fe80::/10 (or fe80::/64 depending on your implementation)
> route pointed to the p2p link.  if A emits a packet with Lx (!= Lb) as a
> destination, it will reach B.  then B forwards it back to A.  then A forwards
> it back to B, ... until hoplimit field goes 0.  also, they would emit
> ICMPv6 redirect to the peer, since the packet gets forwarded back again to the
> incoming interface.

Well if Lx is link-local, it should not bie forwarded at all ?

 
> case 2: consider non-link local address (Ga and Gb).  Ga and Gb shares a
> single /64 prefix, P::/64.
> 
>         A (Ga) --- (Gb) B
> 
> A has P::/64 route pointed to the p2p link.  if A emits a packet with
> Gx (P::x, and Gx != Gb) as a destination, it will reach B.  now, the same
> story as above.  note that, as P::/64 is global or sitelocal prefix,
> remote node can generate the ping-pong packet and chew up the bandwidth
> on the p2p link (so it may be a security issue).

A way to avoid this may be to have only /128 prefixes for non-local
adresses for p2p interfaces, on A, p2p interface dump  will have
something like
   p2p_if:
      (La) / 64
      (Ga)/128 --> (Gb)
so only Gb will be reachable through the link.
Is it considered too restrictive ? or what is the use of a P::/6' on a
p2p link ?

Alain.

-- 
--------------------------------------------------------
Alain RITOUX   
Tel +33-1-39-30-92-32   Fax +33-1-39-30-92-11
Address :  6WIND
           1 place Charles de Gaulle
           Immeuble Central Gare
           78180 MONTIGNY LE BRETONNEUX
           FRANCE
web site : www.6wind.com
--------------------------------------------------------
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page:                      http://playground.sun.com/ipng
FTP archive:                      ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------

Reply via email to