Thanks Tony, Margaret. On Thu, 2002-10-31 at 10:19, Margaret Wasserman wrote: > > > > >On a related topic, if I was to stuff up my site local filters at the > >edge of my site, would my network then become part of my ISPs site local > >network ? In the proposed site-local models, are sites adjacent, or are > >they separated by segments that only have a global address assignments > >(eg the BGP AS model vs the OSPF area model) ? > > Adjacent, with the border running through the router. >
If this is the case, as a customer of a provider who wants to own and configure my own router, I'm individually responsible for ensuring my site local traffic doesn't leak into my provider's site local network, and vice versa. While my security is certainly my primary concern, surely my provider is not going to trust me to hold their internal site local security as a primary concern as well ? Its likely that don't even want me to see their site local routes at all. Also, Tony suggested that if I stuffed up my site local filtering, both myself and my provider would have to make an error with our IGP configuration for our sites to be joined. However, if the site boundary falls across a single router, then only one party has to make an EGP / IGP route distribution configuration error, and in my above example that could be me. I don't think my provider is going to like (and accept) that at all. > Also, all interfaces are considered to be in exactly one scope of > each zone, so all interface are in exactly one site. > I'm guessing you mean an interface can only be in only one site at a time, but not necessarily all members of the same site. Thanks, Mark. -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
