[141677] in North American Network Operators' Group
Re: The stupidity of trying to "fix" DHCPv6
daemon@ATHENA.MIT.EDU (Ray Soucy)
Fri Jun 10 09:53:58 2011
In-Reply-To: <20110610134744.GA20607@ussenterprise.ufp.org>
Date: Fri, 10 Jun 2011 09:53:06 -0400
From: Ray Soucy <rps@maine.edu>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
I can also take down a network with spanning-tree, but oh wait, we
protect against that don't we.
Maybe protecting against rogue RA to begin with would be a better idea
than waiting until a problem happens.
Just saying.
On Fri, Jun 10, 2011 at 9:47 AM, Leo Bicknell <bicknell@ufp.org> wrote:
> In a message written on Fri, Jun 10, 2011 at 09:37:11AM -0400, Ray Soucy =
wrote:
>> You really didn't just write an entire post saying that RA is bad
>> because if a moron of a network engineer plugs an incorrectly
>> configured device into a production network it may cause problems, did
>> you?
>
> No, I posed the easiest way to recreate this issue.
>
> I've seen the entire NANOG and IETF lans taken out because some
> dork enabled microsoft connecting sharing to their cell card.
>
> I've seen entire corporate networks taken out because someone ran
> the patch cable to the wrong port.
>
> The point is, RA's are operationally fragile and DHCP is operationally
> robust. =A0You can choose to stick your head in the sand about that
> if you want, but it's still true.
>
> --
> =A0 =A0 =A0 Leo Bicknell - bicknell@ufp.org - CCIE 3440
> =A0 =A0 =A0 =A0PGP keys at http://www.ufp.org/~bicknell/
>
--=20
Ray Soucy
Epic Communications Specialist
Phone: +1 (207) 561-3526
Networkmaine, a Unit of the University of Maine System
http://www.networkmaine.net/
