Icmp access lists on dhcp-pd deployments
Mohacsi Janos
mohacsi at niif.hu
Thu May 31 14:38:33 CEST 2012
On Thu, 31 May 2012, Seth Mos wrote:
> Op 31-5-2012 9:59, Jens Link schreef:
>> Seth Mos<seth.mos at dds.nl> writes:
>>
>>> What I'm seeing is that ICMP6 (echo) is allowed to the internet but I
>>> can't actually ping the link-local address of the default gateway.
>
> Ah, sorry for the confusion, the gateway I am referring to is the *ISP*
> gateway. Not on the lan.
>
> Why would the ISP block link-local on the link to the customer on purpose?
> That just invalidates all level 1 debugging to see if the connection works.
> Ehn?
Probably they overreacted the security problems. In my environment:
root at OpenWrt:~# ping6 -I eth1 FE80::220:10FF:FEAB:7D00
PING FE80::224:14FF:FEAB:7D00 (fe80::224:14ff:feab:7d00): 56 data bytes
64 bytes from fe80::220:10ff:feab:7d00: seq=0 ttl=64 time=18.728 ms
64 bytes from fe80::220:10ff:feab:7d00: seq=1 ttl=64 time=10.667 ms
64 bytes from fe80::220:10ff:feab:7d00: seq=2 ttl=64 time=10.912 ms
64 bytes from fe80::220:10ff:feab:7d00: seq=3 ttl=64 time=8.662 ms
64 bytes from fe80::220:10ff:feab:7d00: seq=4 ttl=64 time=10.183 ms
64 bytes from fe80::220:10ff:feab:7d00: seq=5 ttl=64 time=19.869 ms
^C
--- FE80::220:10FF:FEAB:7D00 ping statistics ---
Best Regards,
Janos Mohacsi
More information about the ipv6-ops
mailing list