Re: I-D ACTION:draft-ietf-ipv6-default-addr-select-08.txt

Mon, 01 Jul 2002 08:34:02 -0700 

>>>>> On Sun, 30 Jun 2002 19:28:59 +0200, 
>>>>> Francis Dupont <[EMAIL PROTECTED]> said:

>    Rule 7: Prefer public addresses. 
>    If SA is a public address and SB is a temporary address, then prefer 
>    SA. Similarly, if SB is a public address and SA is a temporary 
>    address, then prefer SB. 

> => even if I believe this is the right choice I don't know there is
> a strong consensus.

>    An implementation MUST support a per-connection configuration 
>    mechanism (for example, a socket option) to reverse the sense of 
>    this preference and prefer temporary addresses over public 
>    addresses. 

> => again this is inadequate and stresses the previous issue.
> This MUST must not move to the standard track part.
> Note my environment suggestion works well for this case because
> daemons (which want the public address) run with another userID
> than applications of physical users (which want a temporary address).
> We really need soemthing tunable from the outside, not a new switch
> in every applications...

I tend to agree.  I previously said a per-node switch is better for
privacy purposes (though some disagreed), but more accurately, a
per-user switch is better.

> PS: about KAME implementation, what about:

(We may change the place to discuss the implementation-specific
issues, but I'll reply to them here for now.)

>  - move the policy table rules just after the common sense rules

We can but I'm not sure if it is appropriate to do so before making a
consensus.

>  - put the policy table in a per-process space (u-area)?

It's a good idea.  However, I don't know a good API for this.  As you
mentioned in the public vs temporary case, a socket option is not
suitable.

>  - limit in6_matchlen() to 64 for address selection.

I agree that full-128bit comparison does usually not make much sense,
but I'm not sure if the assumption of the fixed prefix length is a
good idea...

                                        JINMEI, Tatuya
                                        Communication Platform Lab.
                                        Corporate R&D Center, Toshiba Corp.
                                        [EMAIL PROTECTED]
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page:                      http://playground.sun.com/ipng
FTP archive:                      ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------

Reply via email to