[194579] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: BCP for securing IPv6 Linux end node in AWS

daemon@ATHENA.MIT.EDU (=?utf-8?Q?Bj=C3=B8rn_Mork?=)
Sun May 14 09:54:35 2017

X-Original-To: nanog@nanog.org
From: =?utf-8?Q?Bj=C3=B8rn_Mork?= <bjorn@mork.no>
To: Alarig Le Lay <alarig@swordarmor.fr>
Date: Sun, 14 May 2017 15:54:29 +0200
In-Reply-To: <20170514134225.fh2n3oxglh5wgd5a@mew.swordarmor.fr> (Alarig Le
 Lay's message of "Sun, 14 May 2017 15:42:26 +0200")
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org

Alarig Le Lay <alarig@swordarmor.fr> writes:

> So, my advise is simply to not filter ICMP and ICMPv6. And by the way,
> why do want to filter ICMP? You will not be DDoSed with pings.


I tend to agree.  But if you still want to do it, then there is some
advice in https://tools.ietf.org/html/rfc4890


Bj=C3=B8rn


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[194579] in North American Network Operators' Group

Re: BCP for securing IPv6 Linux end node in AWS

daemon@ATHENA.MIT.EDU (=?utf-8?Q?Bj=C3=B8rn_Mork?=)Sun May 14 09:54:35 2017

daemon@ATHENA.MIT.EDU (=?utf-8?Q?Bj=C3=B8rn_Mork?=)
Sun May 14 09:54:35 2017