Default security functions on an IPv6 CPE

Daniel Roesen dr at
Sat May 28 14:24:18 CEST 2011

On Thu, May 12, 2011 at 04:58:51PM +0200, Mohacsi Janos wrote:
> There are several way to fix it:
> - fix broken mediaservers and DLNA devices - allow proper authentication

Which might be undesired (authentication is inconvenient).

> - limit NAS access by default to LAN using link-local addresses

Doesn't work in routed LANs (which we will most probably see in the

> I would not really recommend using ULA addresses in LAN. It is making more 
> trouble in broken source address selection than worth it.


Best regards,

CLUE-RIPE -- Jabber: dr at -- dr at IRCnet -- PGP: 0xA85C8AA0

More information about the ipv6-ops mailing list