RFC 3315 - Final Sections Summary
23. Security Considerations
Key Security Issues:
- Malicious DHCP servers
- Message interception and modification
- Denial of service attacks
- Privacy concerns with DUIDs
Recommended Protection Measures:
- IPsec for server-relay communication
- DHCP authentication for client-server messages
- Reconfigure key mechanism
- Secure DUID generation
24. IANA Considerations
Registry Requirements:
24.1. Multicast Addresses
- FF02::1:2 (All_DHCP_Relay_Agents_and_Servers)
- FF05::1:3 (All_DHCP_Servers)
24.2. DHCP Message Types
- Message type code registry (1-13 defined)
24.3. DHCP Options
- Option code registry (initially 1-20 defined)
24.4. Status Codes
- Success (0) - Success
- UnspecFail (1) - Unspecified failure
- NoAddrsAvail (2) - No addresses available
- NoBinding (3) - No binding
- NotOnLink (4) - Not on link
- UseMulticast (5) - Use multicast
24.5. DUID Types
- DUID-LLT (1)
- DUID-EN (2)
- DUID-LL (3)
25. Acknowledgments
RFC 3315 acknowledges the contributions of the DHC Working Group and the many individuals who contributed to the development of DHCPv6.
26. References
Normative References
- RFC 2119 - Key words for RFCs
- RFC 2460 - IPv6 Specification
- RFC 2461 - Neighbor Discovery
- RFC 2462 - Stateless Address Autoconfiguration
- RFC 3041 - Privacy Extensions
- And others...
Informative References
- RFC 2131 - DHCPv4
- RFC 2132 - DHCP Options
- RFC 2462 - IPv6 Stateless Address Autoconfiguration
- And others...
Appendices
Appendix A
Appearance of Options in Message Types (reference table)
Appendix B
Appearance of Options in the Options Field of DHCP Options (reference table)
Complete specification available at: https://www.rfc-editor.org/rfc/rfc3315.html
Note: RFC 3315 has been obsoleted by RFC 8415 (July 2018). Please refer to RFC 8415 for the current DHCPv6 specification.