> agreed. you can't pass around scoped address across > nodes (in general) > as the view of the scope differs between nodes. i have > clearer idea > on link-locals, but i have almost no solutions against > site-locals. > there are security issues associated with it (attacking > other company's > inside machine using routing header w/ site-local > address, and such...).
I've always liked draft-ietf-ipngwg-site-prefixes-05 (the basic idea is that site-locals are put in the DNS and it specifies a way for a node to filter out the site-locals when they shouldn't be used). It can be extended to the situation of an application on one node sending addresses to an application on another node. The simple idea is to just send all your global & site-local addresses, then the receiving node does the same filtering specified by draft-ietf-ipngwg-site-prefixes-05, and uses draft-ietf-ipv6-default-addr-select-09 to figure out what order to try the addresses. Rich -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
