On 07/02/2014 16:10, Mikael Abrahamsson wrote:
> On Fri, 7 Feb 2014, Brian E Carpenter wrote:
>
>> Sorry, what, why? DSCP is a no-op for a router that doesn't implement
>> diffserv, so why would you ever need to reset them? (It's normal for
>> border routers to clear the DSCP if they want to, of course; no harm,
>> no foul.)
>
> If my core understands DSCP and acts on it, I don't want non-QoS
> customers to send EF traffic, overloading my priority queue with their
> DDOS traffic.
Of course; that's Diffserv 101. If you don't have a Diffserv SLA
with a customer, I'd expect you to clear the DSCP, or if you were
feeling charitable, run the traffic through a diffserv classifier.
I don't see any single respect in which homenets are different,
and I don't see that a device asserting "I am a telephone, not
a DOS vector" is helped by it using a special prefix. Source
addresses can be forged just as easily as DSCPs.
Brian
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet
