Skip to main content

Recommended Simple Security Capabilities in Customer Premises Equipment (CPE) for Providing Residential IPv6 Internet Service
RFC 6092

Yes

(Ron Bonica)

No Objection

(Dan Romascanu)
(Gonzalo Camarillo)
(Jari Arkko)
(Peter Saint-Andre)
(Robert Sparks)
(Russ Housley)
(Sean Turner)
(Stewart Bryant)

Note: This ballot was opened for revision 16 and is now closed.

(Ron Bonica; former steering group member) Yes

Yes ()

                            

(Adrian Farrel; former steering group member) No Objection

No Objection (2010-10-05)
Please note that RFC 4306 has been obsoleted by RFC 5996

(Dan Romascanu; former steering group member) No Objection

No Objection ()

                            

(Gonzalo Camarillo; former steering group member) No Objection

No Objection ()

                            

(Jari Arkko; former steering group member) (was Discuss) No Objection

No Objection ()

                            

(Peter Saint-Andre; former steering group member) No Objection

No Objection ()

                            

(Ralph Droms; former steering group member) No Objection

No Objection (2010-10-05)
Section 3.1:

   REC-9: Inbound DHCPv6 discovery packets [RFC3315] received on
   exterior interfaces MUST NOT be processed by any integrated DHCPv6
   server.

Did you consider processing by an integrated DHCPv6 relay agent?  I would
suggest "server and/or relay agent".

(Robert Sparks; former steering group member) No Objection

No Objection ()

                            

(Russ Housley; former steering group member) No Objection

No Objection ()

                            

(Sean Turner; former steering group member) No Objection

No Objection (2010-10-05)

                            

(Stewart Bryant; former steering group member) No Objection

No Objection ()

                            

(Tim Polk; former steering group member) No Objection

No Objection (2010-10-06)
Two comments:

(1) REC-25 seems out of place.  REC-25 specifies default mode for  handling Host Identity Protocol (hip) packets,
but is in section 3.2.4 "IPsec and Internet Key Exchange (IKE)".

(2) Shouldn't REC-21 cover WESP packets as well as ESP packets?  It would seem the same rules would apply.