nanog mailing list archives

Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion

From: Joel Jaeggli <joelja () bogus com>
Date: Sat, 03 May 2008 00:14:45 -0700

Mikael Abrahamsson wrote:

On Sat, 3 May 2008, Randy Bush wrote:

back office software
ip and dns management software
provisioning tools
cpe
measurement and monitoring and billing

and, of course, backbone and aggregation equipment that can actually
handle real ipv6 traffic flows with acls and chocolate syrup.


Not to mention, you want to be able to do the regular antispoofing etc and 
your security devices (which might be based on L2 switches doing DHCP 
snooping) doesn't do IPv6, so you need to replace them (or live with lower 
security) and this needs serious budget.


Or you'll have to revert to what you did before dhcp filtering switches.

Which was watch for replies from rogues and then update your mac filters 
accordingly or drop the host onto a quarantine vlan. should work quite 
well for rogue RAs and rogue dhcpv6 servers.

Obviously it's reactive rather than proactive but it can be quite 
effective if automated.

_______________________________________________
NANOG mailing list
NANOG () nanog org
http://mailman.nanog.org/mailman/listinfo/nanog

Current thread:

Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion, (continued)
- - - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Chris McDonald (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Marc Manthey (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Patrick W. Gilmore (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Tim Yocum (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion JC Dill (May 13)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Patrick W. Gilmore (May 13)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Deepak Jain (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion James R. Cutler (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Randy Bush (May 02)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Mikael Abrahamsson (May 03)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Joel Jaeggli (May 03)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Robert E. Seastrom (May 07)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Geoff Huston (May 03)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion William Warren (May 03)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 exhaustion Nathan Ward (May 03)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 Paul Vixie (May 04)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 Tomas L. Byrnes (May 04)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 Paul Vixie (May 04)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 Joel Jaeggli (May 04)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 David Conrad (May 04)
    - Re: [NANOG] fair warning: less than 1000 days left to IPv4 Randy Bush (May 04)

(Thread continues...)