[rbridge] Learning endnode locations (was something like "encoding IS-IS encapsulation")
Radia Perlman
Radia.Perlman at sun.com
Mon May 21 21:43:23 PDT 2007
A subtle difference:
Eric Gray (LO/EUS) wrote:
> I would qualify this somewhat differently: I would say
> "MUST be capable of MAC learning via data-frame examination
> and MAY be configurable for learning from IS-IS advertisement
> - either in addition to MAC learning, or in lieu of it. The
> default configuration is with MAC learning from data frames
> in operation (enabled)."
>
The problem with being able to turn off learning from data packets is if
not all MAC addresses
are advertised, then that RBridge will always flood those MAC addresses.
How about that any MAC addresses learned through advertisements always
take precedence
over any learned through data packets?
You said:
>>The reason I would characterize it this way is that it
>>MAY be the case that there are applications for which learning
>>from data frames MUST be disabled.
What kind of application would be really bad to learn from data packets,
or are you
talking about the security aspect of not letting a rogue endnode confuse
RBridges about
the location of a duly enrolled endnode, that authenticated to an
RBridge? If the latter,
then it seems like saying that if you learn the location of endnode E
from IS-IS, you
do not change your mind about where E is based on data packets should answer
that concern, right?
Radia
More information about the rbridge
mailing list