|I don't see why we can't enforce anti-spoofing on encap, since it |requires a mapping to be in place. And we can on decap easily |where the |traffic is symetrical (that is there is a mapping for the source |RLOC/EID pair.
Ok, but what about asymmetric decap? That implies that the ETR does a mapping lookup on the receipt of a packet, buffers the packet until the lookup succeeds, and the does the compare. This seems like another fine way of DoSing the ETR. Tony _______________________________________________ rrg mailing list [email protected] https://www.irtf.org/mailman/listinfo/rrg
