Home page logo
/

nanog logo nanog mailing list archives

Re: do bogon filters still help?
From: Pekka Savola <pekkas () netcore fi>
Date: Thu, 12 Jan 2006 18:12:20 +0200 (EET)


On Thu, 12 Jan 2006, Kevin Loch wrote:
If you have native IPv6 on your network you could run
a local 6to4 relay for your customers and filter 192.88.99.0/24
to/from your peers.

This is only true if you're absolutely, positively sure that no one in your network needs to use 6to4.

Otherwise, packets coming from other native networks, encapsulated by their relays with src=192.88.99.1 coming towards your 6to4-using customers would get blocked.

--
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]