On Wed, 02 Jul 2003 15:45:50 -0700
Bob Hinden & Margaret Wasserman <[EMAIL PROTECTED]> wrote:
[...]
> The reasoning behind this set of changes was to resolve the issues raised
> by the IESG and to maintain comparability with current shipping code. Node
> Information Queries is shipping in the KAME and USAGI distributions and has
> been found to be very useful for deploying IPv6 service and debugging
> operational problems.
>
> Please send substantive comments to the ipng mailing list, and minor
> editorial comments to the authors. This last call period will end on 16
> July 2003.
This looks like a strong draft. Several issues exist though.
1) There is no mention of RFC 3041 (privacy enhanced) addresses. Both
the issue as to if they should be responded with and if they should be
responded to needs to be addressed.
2) The security model is unclear as to the scope of responses. There
is a sentence in the "Security Consideration" section which states the
implementation should have a default configuration which refuses to
respond to global scope addresses.
If this means that the protocol should be limited to link local
addresses that should be stated directly. Use of a 1 Hop Limit or 255
Hop Limit with check would enforce this (see LLMNR for example and
reasons). I think limiting the protocol to the link local reduces
its usefulness.
If its not limited to the link local then this protocol should probably
be filtered at the edge of the administrative domain.
In any case this issue needs to be clarified.
3) (minor) Site locals are called out. For historical reasons I can
see maintaining the query, but the historical nature of the request
should be called out. The handling of IPv4 mapped addresses is
unclear. If global addresses are requested that probably shouldn't
include IPv4 mapped addresses.
Michael Hunter
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
