> -----Original Message-----
> From: Dino Farinacci [mailto:[email protected]]
> Sent: Monday, April 20, 2015 10:53 AM
> To: Ronald Bonica
> Cc: LISP mailing list list
> Subject: Re: [lisp] VPN Leaks
>
>
> >
> > In draft-ietf-lisp-eid-block-10 you say:
> >
> > Avoid excessive stretch: In some deployment scenarios, in order to
> > avoid packet drops, packets triggering a LISP Cache miss are
> > forwarded toward a PETR, during the time necessary to perform a
>
> This is actually incorrect. An ITR or PITR will encapsulate to a PETR, not
> when a
> cache miss happens but when the mapping system returns a “forward-
> native” action in a Null Map-Reply (one with no locator-set).
[RPB]
That's much better. The behavior described in draft-ietf-lisp-eid-block would
cause data to leak out of the VPN.
Ron
_______________________________________________
lisp mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/lisp
