Default security functions on an IPv6 CPE
Daniel Roesen
dr at cluenet.de
Sat May 28 14:24:18 CEST 2011
On Thu, May 12, 2011 at 04:58:51PM +0200, Mohacsi Janos wrote:
> There are several way to fix it:
> - fix broken mediaservers and DLNA devices - allow proper authentication
Which might be undesired (authentication is inconvenient).
> - limit NAS access by default to LAN using link-local addresses
Doesn't work in routed LANs (which we will most probably see in the
future).
> I would not really recommend using ULA addresses in LAN. It is making more
> trouble in broken source address selection than worth it.
Hrm.
Best regards,
Daniel
--
CLUE-RIPE -- Jabber: dr at cluenet.de -- dr at IRCnet -- PGP: 0xA85C8AA0
More information about the ipv6-ops
mailing list