[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

turning on comcast v6

Subject: turning on comcast v6
From: bicknell at ufp.org (Leo Bicknell)
Date: Mon, 6 Jan 2014 09:44:32 -0600
In-reply-to: <[email protected]>
References: <m2haaihyer.wl%[email protected]> <m21u1jbk7u.wl%[email protected]> <CAHd7N8PHgmeTKRE=exAWLHfWrcAi7=0ikO6fKBpRQBLFg9mOaA@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]> <465966A5F5B867419F604CD3E604C1E55932A915@PRA-DCA-MAIL.pra.ray.com> <CED9A84D.3CFDA%[email protected]> <465966A5F5B867419F604CD3E604C1E55932A93B@PRA-DCA-MAIL.pra.ray.com> <CED9ADE4.3D014%[email protected]> <CAEmG1=phmPYA-vZ+NVXwi=RwwKgzMEo+tG+tMj6BUtadhdB73Q@mail.gmail.com> <CEDF00D7.3DAAC%[email protected]> <[email protected]> <CEE7298F.3E36F%[email protected]> <[email protected]> <CAJvB4tmeBDFv9NUn2aDsUHvnWBGqtjEke3WA1xDSOjVOfengFQ@mail.gmail.com> <CEE7429C.3E501%[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected].! ! ! ! com> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

On Jan 5, 2014, at 11:44 PM, Valdis.Kletnieks at vt.edu wrote:

> If Joe Home User has a rogue device spewing RA's, he probably has a bigger
> problem than just not having RA Guard enabled.  He either has a badly
> misconfigured router (and one that's disobeying the mandate to not RA
> if you don't have an uplink), or he has a compromised malicious host.
> 
> In either case, he's got bigger fish to fry.

"mandate" isn't the right description.

http://tools.ietf.org/html/rfc6059

There is a ~3 year old _proposed standard_ for the behavior you describe.

I have yet to see any compliant equipment at $LocalBigBox, but maybe I'm
not purchasing the right gear.

So yet again, the response I get to "ra's are fragile" is "deploy this
brand new band-aid that can't be purchased yet".

Can we just have DHCPv6, please?  How many dozens of technologies are we
going to invent to try and avoid putting a default route in DHCP?

-- 
       Leo Bicknell - bicknell at ufp.org - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 793 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20140106/a05eb173/attachment.bin>

Follow-Ups:
- turning on comcast v6
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

References:
- turning on comcast v6
  - From: matthew at matthew.at (Matthew Kaufman)
- turning on comcast v6
  - From: dougb at dougbarton.us (Doug Barton)
- turning on comcast v6
  - From: owen at delong.com (Owen DeLong)
- turning on comcast v6
  - From: bicknell at ufp.org (Leo Bicknell)
- turning on comcast v6
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

Prev by Date: turning on comcast v6
Next by Date: turning on comcast v6
Previous by thread: turning on comcast v6
Next by thread: turning on comcast v6
Index(es):
- Date
- Thread