SRv6 Capable NOS and Devices

• Previous message (by thread): SRv6 Capable NOS and Devices
• Next message (by thread): SRv6 Capable NOS and Devices
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

> No SRv6 is MPLS labeling where label is carried inside IP instead
> before the IP header. Layering violation which increases complexity
> and cost for no other purpose except dishonest marketing about 'it is
> IP, you already understand it, MPLS is hard'.

What worries me more is the opportunity for adversaries to inject SRv6 packets. MPLS is not enabled by default on most router interfaces, so an adversary would have to have access to an interface where MPLS processing is explicitly enabled. IPv6 packet processing on the other hand… Unless an operator has airtight protection on every interface to block unwanted SRv6 headers I see some interesting opportunities to cause havoc :)

Cheers,
Sander

• Previous message (by thread): SRv6 Capable NOS and Devices
• Next message (by thread): SRv6 Capable NOS and Devices
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]