Paul Wouters has entered the following ballot position for draft-ietf-netmod-acl-extensions-16: No Objection
When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-netmod-acl-extensions/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- I agree with Deb's comments, especially regarding the use of 'reasonably' and 'particular' and the use of secure transport protocols in the Security Considerations Section. In doing so, implementations would optimize the performance of matching lists vs multiple rules matching. I don't believe this is universally true. Making complicated grouping can actually cause more slowness than having multiple rules. Most DDoSes I know in this space is from overcomplicated regexps trying to be clever on matching IPv6. _______________________________________________ netmod mailing list -- [email protected] To unsubscribe send an email to [email protected]
