< draft-ietf-magma-mgmd-mib-14.txt		draft-ietf-magma-mgmd-mib-15.txt >
	MAGMA WG J. Chesterfield		MAGMA WG J. Chesterfield
	Internet-Draft University of Cambridge		Internet-Draft University of Cambridge
	Intended status: Standards Track B. Haberman, Ed.		Intended status: Standards Track B. Haberman, Ed.
	Expires: August 12, 2009 JHU/APL		Expires: August 13, 2009 JHU/APL
	February 8, 2009		February 9, 2009
	Multicast Group Membership Discovery MIB		Multicast Group Membership Discovery MIB
	draft-ietf-magma-mgmd-mib-14		draft-ietf-magma-mgmd-mib-15
	Status of This Memo		Status of This Memo
	This Internet-Draft is submitted to IETF in full conformance with the		This Internet-Draft is submitted to IETF in full conformance with the
	provisions of BCP 78 and BCP 79.		provisions of BCP 78 and BCP 79.
	Internet-Drafts are working documents of the Internet Engineering		Internet-Drafts are working documents of the Internet Engineering
	Task Force (IETF), its areas, and its working groups. Note that		Task Force (IETF), its areas, and its working groups. Note that
	other groups may also distribute working documents as Internet-		other groups may also distribute working documents as Internet-
	Drafts.		Drafts.
	skipping to change at page 1, line 33 ¶		skipping to change at page 1, line 33 ¶
	and may be updated, replaced, or obsoleted by other documents at any		and may be updated, replaced, or obsoleted by other documents at any
	time. It is inappropriate to use Internet-Drafts as reference		time. It is inappropriate to use Internet-Drafts as reference
	material or to cite them other than as "work in progress."		material or to cite them other than as "work in progress."
	The list of current Internet-Drafts can be accessed at		The list of current Internet-Drafts can be accessed at
	http://www.ietf.org/ietf/1id-abstracts.txt.		http://www.ietf.org/ietf/1id-abstracts.txt.
	The list of Internet-Draft Shadow Directories can be accessed at		The list of Internet-Draft Shadow Directories can be accessed at
	http://www.ietf.org/shadow.html.		http://www.ietf.org/shadow.html.
	This Internet-Draft will expire on August 12, 2009.		This Internet-Draft will expire on August 13, 2009.
	Copyright Notice		Copyright Notice
	Copyright (c) 2009 IETF Trust and the persons identified as the		Copyright (c) 2009 IETF Trust and the persons identified as the
	document authors. All rights reserved.		document authors. All rights reserved.
	This document is subject to BCP 78 and the IETF Trust's Legal		This document is subject to BCP 78 and the IETF Trust's Legal
	Provisions Relating to IETF Documents		Provisions Relating to IETF Documents
	(http://trustee.ietf.org/license-info) in effect on the date of		(http://trustee.ietf.org/license-info) in effect on the date of
	publication of this document. Please review these documents		publication of this document. Please review these documents
	skipping to change at page 11, line 8 ¶		skipping to change at page 11, line 8 ¶
	DESCRIPTION		DESCRIPTION
	"The address of the IGMP or MLD Querier on the IP subnet to		"The address of the IGMP or MLD Querier on the IP subnet to
	which this interface is attached. The InetAddressType, e.g.		which this interface is attached. The InetAddressType, e.g.
	IPv4 or IPv6, is identified by the		IPv4 or IPv6, is identified by the
	mgmdRouterInterfaceQuerierType variable in the		mgmdRouterInterfaceQuerierType variable in the
	mgmdRouterInterface table."		mgmdRouterInterface table."
	::= { mgmdRouterInterfaceEntry 3 }		::= { mgmdRouterInterfaceEntry 3 }
	mgmdRouterInterfaceQueryInterval OBJECT-TYPE		mgmdRouterInterfaceQueryInterval OBJECT-TYPE
	SYNTAX Unsigned32 (0..31744)		SYNTAX Unsigned32 (1..31744)
	UNITS "seconds"		UNITS "seconds"
	MAX-ACCESS read-create		MAX-ACCESS read-create
	STATUS current		STATUS current
	DESCRIPTION		DESCRIPTION
	"The frequency at which IGMP or MLD Host-Query packets are		"The frequency at which IGMP or MLD Host-Query packets are
	transmitted on this interface. This variable must be a		transmitted on this interface."
	non-zero value."
	DEFVAL { 125 }		DEFVAL { 125 }
	::= { mgmdRouterInterfaceEntry 4 }		::= { mgmdRouterInterfaceEntry 4 }
	mgmdRouterInterfaceStatus OBJECT-TYPE		mgmdRouterInterfaceStatus OBJECT-TYPE
	SYNTAX RowStatus		SYNTAX RowStatus
	MAX-ACCESS read-create		MAX-ACCESS read-create
	STATUS current		STATUS current
	DESCRIPTION		DESCRIPTION
	"The activation of a row enables the router side of IGMP or		"The activation of a row enables the router side of IGMP or
	skipping to change at page 12, line 6 ¶		skipping to change at page 12, line 5 ¶
	::= { mgmdRouterInterfaceEntry 6 }		::= { mgmdRouterInterfaceEntry 6 }
	mgmdRouterInterfaceQueryMaxResponseTime OBJECT-TYPE		mgmdRouterInterfaceQueryMaxResponseTime OBJECT-TYPE
	SYNTAX Unsigned32 (0..31744)		SYNTAX Unsigned32 (0..31744)
	UNITS "tenths of seconds"		UNITS "tenths of seconds"
	MAX-ACCESS read-create		MAX-ACCESS read-create
	STATUS current		STATUS current
	DESCRIPTION		DESCRIPTION
	"The maximum query response interval advertised in MGMDv2		"The maximum query response interval advertised in MGMDv2
	or v3 queries on this interface."		or IGMPv3 queries on this interface."
	REFERENCE "RFC 3810 section 9.3"		REFERENCE "RFC 3810 section 9.3"
	DEFVAL { 100 }		DEFVAL { 100 }
	::= { mgmdRouterInterfaceEntry 7 }		::= { mgmdRouterInterfaceEntry 7 }
	mgmdRouterInterfaceQuerierUpTime OBJECT-TYPE		mgmdRouterInterfaceQuerierUpTime OBJECT-TYPE
	SYNTAX TimeTicks		SYNTAX TimeTicks
	MAX-ACCESS read-only		MAX-ACCESS read-only
	STATUS current		STATUS current
	DESCRIPTION		DESCRIPTION
	skipping to change at page 38, line 38 ¶		skipping to change at page 38, line 38 ¶
	6. Security Considerations		6. Security Considerations
	There are a number of management objects defined in this MIB module		There are a number of management objects defined in this MIB module
	with a MAX-ACCESS clause of read-write and/or read-create. Such		with a MAX-ACCESS clause of read-write and/or read-create. Such
	objects may be considered sensitive or vulnerable in some network		objects may be considered sensitive or vulnerable in some network
	environments. The support for SET operations in a non-secure		environments. The support for SET operations in a non-secure
	environment without proper protection can have a negative effect on		environment without proper protection can have a negative effect on
	network operations. These are the tables and objects and their		network operations. These are the tables and objects and their
	sensitivity/vulnerability:		sensitivity/vulnerability:
	o The mgmdRouterInterfaceTable provides read-create acces to 2		o The mgmdRouterInterfaceTable provides read-create access to 2
	values; the mgmdRouterInterfaceStatus and the		values; the mgmdRouterInterfaceStatus and the
	mgmdRouterInterfaceQueryInterval.The mgmdRouterInterfaceStatus		mgmdRouterInterfaceQueryInterval.The mgmdRouterInterfaceStatus
	presents a remote user with the ability to enable or disable		presents a remote user with the ability to enable or disable
	multicast support on a given router interface, and therefore		multicast support on a given router interface, and therefore
	presents a significant denial of service vulnerability. The		presents a significant denial of service vulnerability. The
	mgmdRouterInterfaceQueryInterval controls the frequency with which		mgmdRouterInterfaceQueryInterval controls the frequency with which
	host-query packets are sent, providing less of a vulnerability,		host-query packets are sent, providing less of a vulnerability,
	but still requiring secure access control.		but still requiring secure access control.
	o The mgmdRouterCacheTable also provides access to read-create		o The mgmdRouterCacheTable also provides access to read-create
End of changes. 7 change blocks.
	9 lines changed or deleted		8 lines changed or added
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/