[c-nsp] Recommended IPv6 Resources
Matthew Huff
mhuff at ox.com
Tue Mar 13 14:46:56 EDT 2012
+1 on test lab. Lots of issues won't show up until actual use.
For example, on a Cisco router by if you disable SLAAC by doing:
# ipv6 nd prefix default 300 180 no-autoconfig
Windows and Linux work fine. However, Solaris no longer gets a default route
from RA.
These are the gotcha's that you have to find out yourself.
----
Matthew Huff | 1 Manhattanville Rd
Director of Operations | Purchase, NY 10577
OTA Management LLC | Phone: 914-460-4039
aim: matthewbhuff | Fax: 914-460-4139
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-
> bounces at puck.nether.net] On Behalf Of Alan Buxey
> Sent: Tuesday, March 13, 2012 2:35 PM
> To: Steve McCrory
> Cc: cisco-nsp at puck.nether.net
> Subject: Re: [c-nsp] Recommended IPv6 Resources
>
> Hi,
>
> > I'm dipping my toe into the world of IPv6 and I'm looking for
> > recommendations on resources - books, design guides, white papers,
> > tutorials etc.
>
> there are a few IPv6 books out there - from the cisco offerings to
> third party and usual stalwart publishers. they should get you well
> versed on the subject.
>
> yes, address space is bigger - but its the other things that will get
> you ..
> uses multicast to do everything, ICMPv6 is very very important for
> operation of hosts, SLAAC is the 'easy way' to get addresses from the
> router - your DHCP server may well not do DHCPv6 (and if it does, the
> clients probably dont! ;-) ) so how do you record/manage hosts? what
> about reverse records - you going to have 65k of entries for each /64
> that you deal with?
>
> ACLs and switch behaviour - and what about end point protection -
> theres a good layer of ipv4 protection on particualr cisco access layer
> switches now - but the ipv6 is lacking. likewise management - its a
> big big shame that cisco havent gone full-on with mgmt in IPv6 - theres
> no reason why the mgmt of your switches/APs etc cant all be in IPv6 and
> you have no IPv4 on those nets....but no.. latest IOS has some mgmt
> functions that work over IPv6.. not bad considering how long v6 has
> been around before.
>
> my take home message? you can leanr a WHOLE LOT more about it by having
> a dev/test router, a couple of VLANs and home hosts (oh, be sure to
> tick the IPv6 box in VMware if you are virtualised with it ;-) )
>
> alan
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5339 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20120313/3f8f0bde/attachment-0001.bin>
More information about the cisco-nsp
mailing list