do bogon filters still help?

• Previous message (by thread): do bogon filters still help?
• Next message (by thread): do bogon filters still help?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 12 Jan 2006, Kevin Loch wrote:
> If you have native IPv6 on your network you could run
> a local 6to4 relay for your customers and filter 192.88.99.0/24
> to/from your peers.

This is only true if you're absolutely, positively sure that no one in 
your network needs to use 6to4.

Otherwise, packets coming from other native networks, encapsulated by 
their relays with src=192.88.99.1 coming towards your 6to4-using 
customers would get blocked.

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

• Previous message (by thread): do bogon filters still help?
• Next message (by thread): do bogon filters still help?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]