[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Questions on IPv6 deployment
- Subject: Questions on IPv6 deployment
- From: sander at steffann.nl (Sander Steffann)
- Date: Wed, 18 Jan 2017 00:06:10 +0100
- In-reply-to: <CAP-guGU=wpM_1ANAXtsJy9QMB-MUG1b4vxOm1J=mPxMXXTuQzA@mail.gmail.com>
- References: <[email protected]> <CAPDTRij3mSag+jyc_wj8LSy=qhv=C_sSCBf=uE8JWc-juG4GHQ@mail.gmail.com> <CAPDTRiis85k9vC22WqOt77G+qbWqFJD8eQ9O0Yi=XNFAdQHQ_Q@mail.gmail.com> <CAP-guGX05D26WO8YexyVX+jiH5Ghk4uy5K4NKcjij67ybCoUGQ@mail.gmail.com> <[email protected]> <CAP-guGU=wpM_1ANAXtsJy9QMB-MUG1b4vxOm1J=mPxMXXTuQzA@mail.gmail.com>
Hi Bill,
> Op 17 jan. 2017, om 22:55 heeft William Herrin <bill at herrin.us> het volgende geschreven:
>
> I'm always interested in learning something new. Please explain the
> DOS vectors you're referring to and how they're mitigated by
> allocating a /64 to the point to point link.
One thing that comes to mind is that it seems that some routers only have limited space in their routing tables for prefixes longer than a /64. If you would configure a /127 on the link but push the /64 to the routing table then you might both avoid ND Cache exhaustion and avoid the limitations on longer-than-/64 prefixes.
I personally prefer to set up my addressing plan that things like this are possible even if I don't do it today, but I also understand the choices you make. I don't think any of the choices is wrong. It mostly depends on expectations, used equipment and personal preference.
And thanks for mentioning "Minimum assignment to a customer: /60". That is indeed a very important one!
Cheers,
Sander
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20170118/1dce33a4/attachment.pgp>