Default security functions on an IPv6 CPE

Mark Townsley mark at townsley.net
Thu May 12 13:26:31 CEST 2011


On May 12, 2011, at 1:14 PM, Mikael Abrahamsson wrote:

> On Thu, 12 May 2011, Rémi Després wrote:
> 
>> They don't ask for NAT compatibility for the simple reason that they don't know what a NAT is. (User's of Free haven't asked for anything like it.)
> 
> They also expect their NAS at home with no password, not to be reachable from the Internet (that's the conclusion I can draw from people being interviewed in the media who got their documents downloaded by someone who accessed their NAS which didn't have a password set).

If the device (or, rather, application) isn't safe in its default configuration to be used on the Internet at large, it would be well served to not use a globally routed IP address for communication (either IPv4 RFC 1918, or IPv6 ULA). 

- Mark 

> 
> -- 
> Mikael Abrahamsson    email: swmike at swm.pp.se




More information about the ipv6-ops mailing list