On Wed, Feb 28, 2018 at 12:24 AM, Fernando Gont wrote: > On 11/28/2017 12:43 PM, Michael Richardson wrote: >> >> C. M. Heard <[email protected]> wrote: >> > It seems to me that the option description and filtering advice given in >> > >> https://tools.ietf.org/html/draft-ietf-opsec-ipv6-eh-filtering-04#section-4.3.4 >> >> a) it only covers 0x63, and we are changing to 0x23. >> b) yes, the advice to drop is not good. >> >> I'm unclear from a quick read if this the black-list advice, or the >> white-list advice. > > This is meant to be black-list advice. The current advice in our > document is to drop packets with this option at non-RPL routers. Isn't > this advice aligned with the fact that the option type bits note that > nodes that do not support this option should drop the corresponding packets?
The option type is being changed from 0x63 to 0x23 precisely so that non-RPL routers will NOT drop packets with that option. See https://tools.ietf.org/html/draft-ietf-roll-useofrplinfo-21, which has recently been submitted to the IESG for publication. Thanks Mike Heard _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
