[167834] in North American Network Operators' Group
Re: turning on comcast v6
daemon@ATHENA.MIT.EDU (Leo Bicknell)
Mon Dec 30 18:31:57 2013
From: Leo Bicknell <bicknell@ufp.org>
In-Reply-To: <CAJc3aaOLnzb4JacdmuxNL=e=s=-sFM1RUOyYQk57mnd-0fEgTQ@mail.gmail.com>
Date: Mon, 30 Dec 2013 17:31:37 -0600
To: Victor Kuarsingh <victor@jvknet.com>
Cc: Jamie Bowden <jamie@photon.com>,
North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--Apple-Mail=_1F7E908E-78B3-4B88-B09E-60CF8A27758A
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
charset=iso-8859-1
On Dec 30, 2013, at 4:37 PM, Victor Kuarsingh <victor@jvknet.com> wrote:
> On Mon, Dec 30, 2013 at 3:49 PM, Lee Howard <Lee@asgard.org> wrote:
>>> The better question is are you using RIP or ICMP to set gateways in =
your
>>> network now?
>>=20
>> I disagree that that's a better question.
>> I'm not using RIP because my hosts don't support it (at least, not =
without
>> additional configuration), and it would be a very unusual =
configuration,
>> adding weight and complexity for no benefit. RAs are the opposite.
>> Not even sure how you would use ICMP to set a default gateway. Maybe
>> there's a field I'm unaware of.
>>=20
>=20
> [VK] The RIP comparison is somewhat confusing to me. I don't see how =
RIP
> is comparable in this context (I guess technically you can pass a =
default
> route in RIP, but as Lee mentions, the protocol is designed for a =
different
> purpose and requires configuration).
There was a time, I'm going to roughly guess approximately 1987-1992, =
although
I may be off by a year or two, that you needed to have lived through for =
this
to make sense.
You see, in that time the available IGP was, well, RIP. RIPv1. =
Routers, at
least ones you could buy, did not have OSPF, EIGRP, or even in many =
cases
EGP/BGP. They had RIPv1, and perhaps some bleeding edge Cisco's had =
IGRP.
So almost every campus network ran RIPv1.
This is also pre-CIDR, so remember every subnet had to have the same =
mask.
For instance the University I went to had a /16, divided into entirely
/22 networks for each LAN. The RIP config enabled it for the entire =
/16.
Certain vendors, like Sun (who was popular at the time) shipped SunOS =
boxes
with routed enabled by default, where they received a default route (if
the admins filtered) or a full (local) table via RIPv1.
In short, there was a time when getting a default route via RIP was in
fact common. It was also the time of telnet, and rsh, decidedly pre =
SSL,
ssh, or IPSEC.
It was also a time when the Internet came under heavy, well, attack, by =
people
who realized how soft and squishy it was. Injecting a route into RIP
allowed you to hijack rsh sessions, for example. Lots of people who =
were
admins at that time learned through personal pain and late night hacking=20=
that sending a dynamic route to a box via an unauthenticated protocol =
was
a recipe for disaster.
--=20
Leo Bicknell - bicknell@ufp.org - CCIE 3440
PGP keys at http://www.ufp.org/~bicknell/
--Apple-Mail=_1F7E908E-78B3-4B88-B09E-60CF8A27758A
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
filename=signature.asc
Content-Type: application/pgp-signature;
name=signature.asc
Content-Description: Message signed with OpenPGP using GPGMail
-----BEGIN PGP SIGNATURE-----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=v1O6
-----END PGP SIGNATURE-----
--Apple-Mail=_1F7E908E-78B3-4B88-B09E-60CF8A27758A--
