[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Proposed 6to4 work (security)
On Wed, 16 Oct 2002 itojun@iijlab.net wrote:
> as outlined in draft-itojun-ipv6-transition-abuse-01.txt, 6to4
> relay routers
[...]
> - can chew up bandwidth of the 6to4 public relay router provider, and
> there's no way for an ISP to limit accesses to the relay router
> to their customers (it has to be public service to everyone)
I believe you *can* quite effectively limit the access. First by not
advertising 2002::/16 or 192.88.99.1 to your peers (or doing it by some
controlled measure, like no-export community), and if it's really
important, placing some ACL's.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords