IPv6 enabled carriers?

Jeroen Massar jeroen at unfix.org
Wed Mar 10 15:10:45 CST 2010

Owen DeLong wrote:
> Hurricane Electric has a full production dual-stack environment.
>> I'm being tasked with coming up with an IPv6 migration plan for a data center.
>> Mostly interested in if ATT, Level3, GLBX, Saavis, Verizon Business
>> and Qwest are capable as those are the typical ones I deal with.
> To the best of my knowledge, each of those has varying degrees of IPv6
> availability and none is "full production product" yet. My information could
> be old.

Always fun to read how people who work for some place (you might want to
use either your work address or actually disclose directly why you are
pimping something) like to bash their competition else while they run a
'full production' network without providing true arguments to counter
that, nevertheless lets take a look at that "full production network":

 3  10g-3-2.core1.sjc2.ipv6.he.net (2001:470:0:3c::1)  66.649 ms  66.555
ms  66.511 ms
 4  10g-3-2.core1.pao1.ipv6.he.net (2001:470:0:32::2)  59.644 ms  62.214
ms  62.164 ms
 5  3ffe:80a::b2 (3ffe:80a::b2)  61.770 ms  62.135 ms  62.506 ms
 6  hitachi1.otemachi.wide.ad.jp (2001:200:0:4401::3)  182.958 ms
181.156 ms  181.346 ms
 7  2001:200:0:1c04::251 (2001:200:0:1c04::251)  183.827 ms  181.617 ms
 181.554 ms

Yes, 6bone is still alive (sing along to that well known Portal tune ;)

I, and others, have mentioned that problem already several times since
2006-06-06, you know the day that 6bone got shut down.

It is also still amazing that "full production networks" are not able to
do proper uRPF or let alone IRR based filtering as in that case you
would not even see that nonsense...

Also if you are running such a "full production network" you might want
to disclose the traffic levels that you do. Or is there something to
hide there?

Thus: please actually FINALLY fix your "full production network" by
finally renumbering at PAIX. You are peering with other folks, thus you
know who is on the other side, as such, after 4 years, you might want to
finally move on from this 6bone space and possibly deploy uRPF.
Then again, you'll notice those traffic levels one day when you will go
into history as the source of the first large spoofed DoS attack against
whatever truly important service.

Thanks for your attention.

  (who has no true ISP hat ;)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 196 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20100310/f77194e3/attachment.bin>

More information about the NANOG mailing list