On 2010-04-15 10:38, Mohacsi Janos wrote:
Why cope with QoS if somebody is sending packets to black-hole?
I don't understand your question, but here's an example use case of the
attack I'm suggesting:
I want to evade an SFQ QoS for a single flow. If the QoS is based on the
flow field, I can just put random values in the flow field so that my
packets appear to come from multiple flows, which will let me get better
throughput.
Many other examples come to mind...
This usage of the flow field would need to be treated just like the DSCP
field. Maybe you can use it in some applications, not in others. But a
recommendation that all hosts on the Internet set it would be pointless
if intermediate networks can't or won't use it.
Simon
--
NAT64/DNS64 open-source --> http://ecdysis.viagenie.ca
STUN/TURN server --> http://numb.viagenie.ca
vCard 4.0 --> http://www.vcarddav.org
--------------------------------------------------------------------
IETF IPv6 working group mailing list
[email protected]
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------
