nanog mailing list archives

Re: Using IPv6 with prefixes shorter than a /64 on a LAN

From: Fernando Gont <fernando () gont com ar>
Date: Tue, 25 Jan 2011 22:04:25 -0300

On 24/01/2011 09:46 p.m., Owen DeLong wrote:

Many cite concerns of potential DoS attacks by doing sweeps of
IPv6 networks.  I don't think this will be a common or
wide-spread problem.


Myopia doesn't make the problem go away.  The point of such an
attack is not to "find things", but to overload the router(s).
(which can be done rather easily by a few dozen machines.)

Only if you don't deploy reasonable mitigation strategies.


Just wondering: What would you deem as "reasonable mitigation strategies"?

Thanks,
-- 
Fernando Gont
e-mail: fernando () gont com ar || fgont () acm org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

Current thread:

Re: Using IPv6 with prefixes shorter than a /64 on a LAN, (continued)
- - - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Eugen Leitl (Jan 26)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Roland Dobbins (Jan 26)
    - RE: Using IPv6 with prefixes shorter than a /64 on a LAN Mikael Abrahamsson (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Owen DeLong (Jan 26)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Owen DeLong (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Leen Besselink (Jan 30)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Laurent GUERBY (Jan 30)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Owen DeLong (Jan 30)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Valdis . Kletnieks (Jan 30)
    - RE: Using IPv6 with prefixes shorter than a /64 on a LAN George Bonser (Jan 30)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Fernando Gont (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Ray Soucy (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Fernando Gont (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Roland Dobbins (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Jimmy Hess (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Roland Dobbins (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Fernando Gont (Jan 25)
  - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Fernando Gont (Jan 25)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Owen DeLong (Jan 26)
    - Re: Using IPv6 with prefixes shorter than a /64 on a LAN Fernando Gont (Jan 26)