[184495] in North American Network Operators' Group
Re: /27 the new /24
daemon@ATHENA.MIT.EDU (Sander Steffann)
Sun Oct 4 12:00:15 2015
X-Original-To: nanog@nanog.org
From: Sander Steffann <sander@steffann.nl>
In-Reply-To: <18661688-294A-4662-8380-DF6C2C490E6F@beckman.org>
Date: Sun, 4 Oct 2015 17:58:26 +0200
To: Mel Beckman <mel@beckman.org>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
Hi,
> Op 4 okt. 2015, om 16:52 heeft Mel Beckman <mel@beckman.org> het =
volgende geschreven:
>=20
> If it doesn't support IPSec, it's not really IPv6. Just as if it =
failed to support any other mandatory IPv6 specification, such as RA.=20
I think you're still looking at an old version of the IPv6 Node =
Requirements. Check https://tools.ietf.org/html/rfc6434#section-11, =
specifically this bit:
"""
Previously, IPv6 mandated implementation of IPsec and recommended the =
key management approach of IKE. This document updates that =
recommendation by making support of the IPsec Architecture a SHOULD for =
all IPv6 nodes.
"""
This was published in December 2011.
Cheers,
Sander
