[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[OPSEC] ipv6 ingress filtering...

To: "'opsec at ietf.org'" <opsec at ietf.org>
Subject: [OPSEC] ipv6 ingress filtering...
From: Joel Jaeggli <joelja at bogus.com>
Date: Wed, 26 Aug 2009 13:55:46 -0700
Delivered-to: opsec at core3.amsl.com
List-archive: <http://www.ietf.org/mail-archive/web/opsec>
List-help: <mailto:opsec-request@ietf.org?subject=help>
List-id: opsec wg mailing list <opsec.ietf.org>
List-post: <mailto:opsec@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
User-agent: Thunderbird 2.0.0.23 (X11/20090817)

I have been following the thread on ipv6 at ietf.org on the subject of
routing loop attacks using ipv6 tunnels

http://www.ietf.org/mail-archive/web/ipv6/current/threads.html#10800

and it occurs to me that the corpus of knowledge on ipv6 ingress
filtering may be somewhat incomplete.

There is this document:

http://www.cymru.com/Bogons/ipv6.txt

that is in a format and with authors that look fairly familiar.

there is this document:

http://ietfreport.isoc.org/idref/draft-dupont-ipv6-ingress-filtering/

which appears consigned to history

rfc 2827 and 3704 are the canonical documents in this space, rfc 3178
deals with some limitations of ingress filters being imposed.

threats that become feasible due to the inposition of transition
technologies were not a consideration of the later three documents.

Thoughts are appreciated.

joel

Prev by Date: Re: [OPSEC] review for draft-ietf-opsec-ip-security-01
Next by Date: [OPSEC] RFC 5635 on Remote Triggered Black Hole Filtering with Unicast Reverse Path Forwarding (uRPF)
Previous by thread: [OPSEC] [Fwd: New Version Notification for draft-ietf-opsec-ip-security-01]
Next by thread: [OPSEC] RFC 5635 on Remote Triggered Black Hole Filtering with Unicast Reverse Path Forwarding (uRPF)
Index(es):
- Date
- Thread