NDP DoS attack (was Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?))
Owen DeLong
owen at delong.com
Fri Jul 15 06:13:03 UTC 2011
On Jul 14, 2011, at 8:24 PM, Jimmy Hess wrote:
> On Thu, Jul 14, 2011 at 9:35 PM, Jared Mauch <jared at puck.nether.net> wrote:
>> On Jul 14, 2011, at 10:06 PM, Fernando Gont <fernando at gont.com.ar> wrote:
>> Anyone on a layer-2 network can do something interesting like flood all f's and kill the lan. Trying to keep the majority of thoughts here for layer-3 originated attacks, even if the target is a layer2 item.
>> - Jared
>
> In most cases if you have a DoS attack coming from the same Layer-2
> network that a router is attached to,
> it would mean there was already a serious security incident that
> occured to give the attacker that special point to attack from.
>
That's one possibility.
The other likely possibility is that you are a University.
Owen
More information about the NANOG
mailing list