[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Using IPv6 with prefixes shorter than a /64 on a LAN

Subject: Using IPv6 with prefixes shorter than a /64 on a LAN
From: fernando at gont.com.ar (Fernando Gont)
Date: Tue, 25 Jan 2011 22:04:25 -0300
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]>

On 24/01/2011 09:46 p.m., Owen DeLong wrote:

>>> Many cite concerns of potential DoS attacks by doing sweeps of
>>> IPv6 networks.  I don't think this will be a common or
>>> wide-spread problem.
>> 
>> Myopia doesn't make the problem go away.  The point of such an
>> attack is not to "find things", but to overload the router(s).
>> (which can be done rather easily by a few dozen machines.)
>> 
> Only if you don't deploy reasonable mitigation strategies.

Just wondering: What would you deem as "reasonable mitigation strategies"?

Thanks,
-- 
Fernando Gont
e-mail: fernando at gont.com.ar || fgont at acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

References:
- Using IPv6 with prefixes shorter than a /64 on a LAN
  - From: carlosm3011 at gmail.com (Carlos Martinez-Cagnazzo)
- Using IPv6 with prefixes shorter than a /64 on a LAN
  - From: rps at maine.edu (Ray Soucy)
- Using IPv6 with prefixes shorter than a /64 on a LAN
  - From: jfbeam at gmail.com (Ricky Beam)
- Using IPv6 with prefixes shorter than a /64 on a LAN
  - From: owen at delong.com (Owen DeLong)

Prev by Date: Using IPv6 with prefixes shorter than a /64 on a LAN
Next by Date: Using IPv6 with prefixes shorter than a /64 on a LAN
Previous by thread: Using IPv6 with prefixes shorter than a /64 on a LAN
Next by thread: Using IPv6 with prefixes shorter than a /64 on a LAN
Index(es):
- Date
- Thread