[174647] in North American Network Operators' Group
2002::/16 [6to4] & abuse
daemon@ATHENA.MIT.EDU (David Hubbard)
Wed Sep 24 12:48:33 2014
X-Original-To: nanog@nanog.org
Date: Wed, 24 Sep 2014 12:42:15 -0400
From: David Hubbard <dhubbard@dino.hostasaurus.com>
To: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Curious if anyone can tell me, or point me to a link, on how 2002::/16
is actually implemented for 6to4? Strictly for curiosity.
We had a customer ask about blocking spam from their wordpress blog that
we host and the spammer was using 2002:af2c:785::af2c:785, which was the
first time I'd seen wordpress spam coming from IPv6. Per RFC3964, I'm
guessing the 175.44.120.5 is just a relay router, not surprisingly, on
the China Net network and the spammer was native v6?
I see that net advertised from 6939 (HE) and 1103 (SURFnet Netherlands)
from the perspective of my feeds, so that just got me more confused.
Thanks,
David
