[c-nsp] IPV6 in general was Re: Large networks
Gert Doering
gert at greenie.muc.de
Fri Aug 28 09:21:31 EDT 2009
Hi,
On Fri, Aug 28, 2009 at 02:39:31PM +0200, Grzegorz Janoszka wrote:
> >So you only *need* the link-local.
>
> No, my routers do NOT send ra. I disable it as an incredibly insecure
> mechanism.
What exactly is "incredibly insecure" in *sending* RAs?
I could understand if a host does not want to *receive* RAs, if the
network environment is not trusted and there is no SeND available yet.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 304 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20090828/fbc8cb2d/attachment.bin>
More information about the cisco-nsp
mailing list