On Tue, 16 Sep 2008, james woodyatt wrote:
On Sep 15, 2008, at 17:44, Christian Huitema wrote:If the ISP ensures that the advertisements for 2001::/32 are not sent to third parties, then the relays can only be used by that ISP's customer.The complaint I have heard is that simply not advertising the routes to third parties is not enough to prevent them from using static routes to steal relay service.
If they're afraid of that, why can't they just block access to the relay address via ACLs at their borders? Most ISPs probably do some kind of filtering at their border anyway. Adding one more deny rule isn't gonna make a big impact on performance.
-- Antonio Querubin whois: AQ7-ARIN