A challenge (was Re: Default security functions on an IPv6 CPE)

Mikael Abrahamsson swmike at swm.pp.se
Thu May 19 13:27:14 CEST 2011

Sorry for jumping in in the middle of the thread, but I couldn't find the 
email I wanted to find to reply to.

There was a comment earlier about IKE (UDP/500) and IPSEC, and if the CPE 
has a default-deny-ingress stateful firewall that doesn't allow any new 
connections, would allowing IKE (UDP/500) and IPSEC (IP proto 50) by 
default make sense?

Mikael Abrahamsson    email: swmike at swm.pp.se

More information about the ipv6-ops mailing list