Usage of fd00::/8 on the Interwebz - something with filters and uRPF
Jeroen Massar
jeroen at massar.ch
Wed May 29 21:59:04 CEST 2013
...
4 2001:7f8:1::a500:3303:1 (2001:7f8:1::a500:3303:1) 20.755 ms 20.763 ms 20.784 ms
5 fd00:3303::1 (fd00:3303::1) 22.010 ms 21.984 ms 21.986 ms
6 2a02:120c:1051:d010::1 (2a02:120c:1051:d010::1) 17.806 ms 17.889 ms 17.842 ms
7 2a02:120c:1051:d010::1 (2a02:120c:1051:d010::1) 18.720 ms 18.593 ms 18.617 ms
...
Hmmmm fd00::/8, that really should never ever be visible on the Internet, being Unique *LOCAL* Addresses.
And it does not look like they applied the randomness bit for picking a prefix either.
You would also almost think that a /28 is more than enough address space to put a few router loopbacks in.
It is apparently time for people to start checking their filters again because it seems that these packets leak into other ASNs too...
More generally, do recheck your network for BCP38 compliance, please do apply it and require your peers to do the same!
Greets,
Jeroen
More information about the ipv6-ops
mailing list