Random Port Blocking at Hotels (was: Re: quietly....)

Owen DeLong owen at delong.com
Sun Feb 6 04:42:08 UTC 2011


On Feb 5, 2011, at 8:30 PM, Matthew Kaufman wrote:

> On 2/5/2011 8:15 PM, Paul Timmins wrote:
>> OR just upgrade your gear, and while you're at it, you can now safely enable IPv6 anyway.
> 
> Well, enable IPv6. Safely? I don't see how upgrading your gear magically makes the various security threats -- including the current topic of rogue RAs -- go away.
> 
> Matthew Kaufman

Most rogue RAs are problematic on networks that don't have legitimate RAs to override them.

Yes, someone can do a malicious RA, but, the current problem is mostly people doing
accidental RAs thanks to Micr0$0ft's convenient "Click here to screw your neighbors"
buttons.

Owen





More information about the NANOG mailing list