nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Experiences with IPv6 and Routing Efficiency

From: "Mukom Akong T." <mukom.tamon () gmail com>
Date: Sun, 19 Jan 2014 22:28:27 +0400
On Sun, Jan 19, 2014 at 8:15 PM, Nick Hilliard <nick () foobar org> wrote:


If some third party decides to send packets
to a massive number of addresses on that LAN, then the router which is
forwarding these packets will attempt to perform ND for these addresses.
This can trivially be used as a cache exhaustion attack, which can cause
regular connectivity on that LAN to be trashed.



I totally forgot about this scenario. Yes it is a real problem.


-- 

Mukom Akong T.

http://about.me/perfexcellence |  twitter: @perfexcellent
------------------------------------------------------------------------------------------------------------------------------------------
“When you work, you are the FLUTE through whose lungs the whispering of the
hours turns to MUSIC" - Kahlil Gibran
-------------------------------------------------------------------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: