[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Fwd: Re: [lisp-interest] LISP-ALT and security]

To: lisp-interest@lists.civil-tongue.net
Subject: [Fwd: Re: [lisp-interest] LISP-ALT and security]
From: Erik Nordmark <erik.nordmark@sun.com>
Date: Thu, 31 Jul 2008 03:28:03 -0700
Sender: owner-list-interest@lists.civil-tongue.net
User-agent: Thunderbird 2.0.0.14 (X11/20080519)

[Retransmit]

-------- Original Message --------
Subject: Re: [lisp-interest] LISP-ALT and security
Date: Thu, 31 Jul 2008 02:02:07 -0700
From: Erik Nordmark <erik.nordmark@sun.com>
To: bensons@riot.queuefull.net

CC: Scott Brim <swb@employees.org>,owner-list-interest@lists.civil-tongue.net, Roque Gagliano<rgaglian@fing.edu.uy>, lisp-interest@lists.civil-tongue.netReferences:<245483372-1217441290-cardhu_decombobulator_blackberry.rim.net-1673143275-@bxe036.bisx.prod.on.blackberry>


bensons@riot.queuefull.net wrote:

Though, the replying eTR may not represent the whole RIR-assigned prefix. Perhaps you're saying that the RIR would sign a statement indicating how the LIR may/will allocate subnets (I.e. /24 nets) from the supernet? And these would be distributed to iTR nodes beforehand or looked up against a directory or table on the fly? That doesn't sound practical, but maybe I don't understand correctly.


From a security perspective there isn't an issue with allowing an ETR
who has authority to speak for /22 EID prefix to provide separate
information (priorities, weights, even RLOCs) for different sub-sets of
that /22.

(It might have an impact on scaling, but that is a different matter.)

   Erik

Prev by Date: Re: [lisp-interest] LISP-ALT and security
Next by Date: Re: [lisp-interest] LISP-ALT and security
Previous by thread: RE: [lisp-interest] LISP-ALT and security
Next by thread: [lisp-interest] RE: [GROW] LISP@GROW
Index(es):
- Date
- Thread