[136315] in North American Network Operators' Group
Re: quietly....
daemon@ATHENA.MIT.EDU (Jack Bates)
Wed Feb 2 09:44:23 2011
Date: Wed, 02 Feb 2011 08:43:23 -0600
From: Jack Bates <jbates@brightok.net>
To: Tony Finch <dot@dotat.at>
In-Reply-To: <alpine.LSU.2.00.1102021419430.5244@hermes-1.csi.cam.ac.uk>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 2/2/2011 8:22 AM, Tony Finch wrote:
> Counterexample: rogue RAs from Windows boxes running 6to4 or Teredo and
> Internet Connection Sharing. This is a lot harder to fix than a
> misconfigured DHCP server.
CounterCounterexample: rogue DHCPv6 servers from windows boxes or
improperly connected CPEs.
Both DHCP(4 or 6) and RA require careful filtering to keep rogues from
jacking things up. Though M$ has a nice deployment for authorizing DHCP4
servers in corporate environments.
Jack
