nanog mailing list archives
Re: ip options
From: isabel dias <isabeldias1 () yahoo com>
Date: Wed, 4 Nov 2009 06:54:43 -0800 (PST)
:-) ----- Original Message ---- From: joel jaeggli <joelja () bogus com> To: Ron Bonica <rbonica () juniper net> Cc: nanog <nanog () nanog org> Sent: Wed, November 4, 2009 3:41:26 AM Subject: Re: ip options How about unused and/or private/local diffserve code points? Ron Bonica wrote:
Folks, I would love to see the IETF OPSEC WG publish a document on the pros and cons of filtering optioned packets. Would anybody on this list be willing to author an Internet Draft? Ron (co-director IETF O&M Area) Luca Tosolini wrote:Experts, out of the well-known values for ip options: X@r4# set ip-options ? Possible completions: <range> Range of values [ Open a set of values any Any IP option loose-source-route Loose source route route-record Route record router-alert Router alert security Security stream-id Stream ID strict-source-route Strict source route timestamp Timestamp I can only think of: - RSVP using router-alert - ICMP using route-record, timestamp But I can not think of any other use of any other IP option. Considering the security hazard that they imply, I am therefore thinking to drop them. Is any other ip options used by: ospf, isis, bgp, ldp, igmp, pim, bfd? Thanks, Luca.
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Current thread:
- Re: ip options Ron Bonica (Nov 03)
- Re: ip options joel jaeggli (Nov 03)
- Re: ip options isabel dias (Nov 04)
- Re: ip options joel jaeggli (Nov 03)