[127145] in North American Network Operators' Group
RE: ipv6 bogon / martian filter - simple
daemon@ATHENA.MIT.EDU (George, Wes E IV [NTK])
Tue Jun 15 08:24:23 2010
From: "George, Wes E IV [NTK]" <Wesley.E.George@sprint.com>
To: Brandon Applegate <brandon@burn.net>, "nanog@nanog.org" <nanog@nanog.org>
Date: Tue, 15 Jun 2010 07:23:32 -0500
In-Reply-To: <alpine.DEB.1.00.1006141931490.6227@orbital.burn.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
This would be another alternative:
http://www.space.net/~gert/RIPE/ipv6-filters.html
Slightly more than 1 line, but the loose case would nuke a few more things =
than just filtering on 2000::/3 without requiring frequent updates. The str=
ict case requires keeping after it for updates, and you'd probably be bette=
r off with Cymru.
Thanks,
Wes George
-----Original Message-----
From: Brandon Applegate [mailto:brandon@burn.net]
Sent: Monday, June 14, 2010 7:38 PM
To: nanog@nanog.org
Subject: ipv6 bogon / martian filter - simple
I mean really simple. Like 2000::/3. If it's not in there it's bogon,
yes ?
What I'm really asking, is for folks thoughts on using this - is it too
restrictive ?
How long until it's obsolete ?
Should be a really long time no ?
Again, just looking for some feedback either way. Would be very nice to
have a single line ACL do this job.
--
Brandon Applegate - CCIE 10273
PGP Key fingerprint:
7407 DC86 AA7B A57F 62D1 A715 3C63 66A1 181E 6996
"SH1-0151. This is the serial number, of our orbital gun."
This e-mail may contain Sprint Nextel Company proprietary information inten=
ded for the sole use of the recipient(s). Any use by others is prohibited. =
If you are not the intended recipient, please contact the sender and delete=
all copies of the message.
