Technical Summary
A transit-only network is defined as a network connecting routers
only. In OSPF, transit-only networks are usually configured with
routable IP addresses, which are advertised in Link State
Advertisements (LSAs) but not needed for data traffic. In addition,
remote attacks can be launched against routers by sending packets to
these transit-only networks. This document presents a mechanism to
hide transit-only networks to speed up network convergence and reduce
remote attack vulnerability.
In the context of this document, 'hiding' implies that the prefixes
are not installed in the routing tables on OSPF routers. In some
cases, IP addresses may still be visible when using OSPFv2.
This document updates RFC 2328 and RFC 5340.
Working Group Summary
The function is fairly straight-forward and the only discussion was
related to OSPFv3 whether the DR should suppress advertisement of
all prefixes on the link or whether it should be based on the
individual link-LSA advertisements. After some discussion, we decided
on the latter.
Document Quality
The document has gone through several WG review cycles and
revisions. There is at least one implementation and another under
development.
Personnel
Acee Lindem is the document shepherd and Stewart Bryant is the
responsible AD.