nanog mailing list archives

Re: Another driver for v6?

From: Brandon Butterworth <brandon () rd bbc co uk>
Date: Wed, 29 Oct 2008 07:53:56 GMT

They claim they will deploy IPv6 in their worldwide enterprise network, do 
away with central based enterprise firewalls and do host-to-host 
IPv6+IPSEC, Active Directory based certificates for authentication.


That's why we end up breaking end to end, to cover up for stuff that
exposes more than people are comfortable with

All security would be host based.


Right, the last thing to trust based on experience so far

First they need to get rid of all the bots and other
malware before hosts can be trusted.

as I am very tired of all the problems caused by multiple
layers of NATs and PAT.


Likewise but more because people keep designing stuff to try and force
others to get rid of them, ignoring why they have them.

brandon

Current thread:

Re: Another driver for v6?, (continued)
- - - Re: Another driver for v6? David W. Hankins (Oct 31)
    - Re: Another driver for v6? Mike Lewinski (Oct 31)
    - Re: Another driver for v6? David W. Hankins (Oct 31)
    - Re: Another driver for v6? Jeroen Massar (Oct 31)
    - Re: Another driver for v6? HRH Sven Olaf Prinz von CyberBunker-Kamphuis MP (Oct 31)
    - Re: Another driver for v6? Mikael Abrahamsson (Oct 30)
    - RE: Another driver for v6? michael.dillon (Oct 30)
    - Re: Another driver for v6? Tore Anderson (Oct 31)
    - Re: Another driver for v6? David W. Hankins (Oct 31)
    - RE: Another driver for v6? michael.dillon (Oct 30)
- Re: Another driver for v6? Brandon Butterworth (Oct 29)
  - Re: Another driver for v6? Jack Bates (Oct 29)