[105685] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: IPv4 source routing options and IPv6 Type 0 Routing Header

daemon@ATHENA.MIT.EDU (Fernando Gont)
Sun Jun 29 07:15:36 2008

Date: Sun, 29 Jun 2008 08:12:02 -0300
To: Randy Bush <randy@psg.com>
From: Fernando Gont <fernando@gont.com.ar>
In-Reply-To: <48633AD2.4040301@psg.com>
Cc: nanog@merit.edu
Errors-To: nanog-bounces@nanog.org

At 03:44 a.m. 26/06/2008, Randy Bush wrote:

>source routing is still requested and sometimes mandated at inter-as
>borders. for the reasons deepak stated.  note that this does not expose
>any vulnerability.  source routing is only dangerous to hosts.

Well, it can be used as an amplification mechanism for bandwidth 
consuption attacks (although it is not as effective as the Type 0 
Routing header of v6, because of the limited space in the v4 header).

Thanks!

Kind regards,

--
Fernando Gont
e-mail: fernando@gont.com.ar || fgont@acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[105685] in North American Network Operators' Group

Re: IPv4 source routing options and IPv6 Type 0 Routing Header

daemon@ATHENA.MIT.EDU (Fernando Gont)Sun Jun 29 07:15:36 2008

daemon@ATHENA.MIT.EDU (Fernando Gont)
Sun Jun 29 07:15:36 2008