On Tuesday 05 January 2010 14:31:46 Andrew Lunn wrote:
Can this be made a bit more robust? An easy DoS would be to offer to be a gateway, but not run DHCP. All my near neighbours then fail to get an IP address and i have quiet network with more bandwidth for myself.
Good point. Before I had another scheme in mind: DHCP requests are broadcasted but the batman-adv client would filter the responses preferring the selected gateway if its reply is available. Of course, that is more complex to implement.
Could we inspect the DHCP packet a bit more deeply, look for DHCP discovery packets, unicast 3 in 4 to the best gateway, broadcast 1 in 4 as a fallback.
I'm not sure this approach is feasible. As soon as we broadcast a single packet we might end up with a badly chosen gateway.
The batman daemon is able to blacklist broken gateways and switches to another one. We may want to do the same.
Regards, Marek