Default security functions on an IPv6 CPE

S.P.Zeidler spz at
Sat May 7 13:50:08 CEST 2011

Thus wrote Mikael Abrahamsson (swmike at

> On Fri, 6 May 2011, Cameron Byrne wrote:
> >This also keeps us locked into tcp/udp and breaks sctp and other
> >forward looking evolutions of ip transport ... also likely broken
> >are multicast, ipsec, mobile ip, ...
> Nono, my suggestion is to statefully block incoming connections to
> low tcp/udp ports but allow everything else IPv6.

udp port 500, IKE?

spz at (S.P.Zeidler)

More information about the ipv6-ops mailing list