Usage of fd00::/8 on the Interwebz - something with filters and uRPF

Jeroen Massar jeroen at massar.ch
Thu May 30 18:11:43 CEST 2013


On 2013-05-30 08:10, Jared Mauch wrote:
> 
> On May 30, 2013, at 2:23 AM, Jeroen Massar <jeroen at massar.ch> wrote:
> 
>> Just showing that quite a few networks are not doing uRPF.
> 
> Problem in many cases is that the vendors don't have working uRPF.
> 
> CSCuh1350

I am unfortunately aware that even in 2013 the big boys do not play
along with a BCP from 2000... ;(

(and as mentioned, for transits, it can be tricky to turn on uRPF or do
other kind of prefix-filters in some cases, though try they should)

> Even if the providers wanted to do it (which many do), in IPv6 land
> it's actually harder due to things like ULA, mapped-v4-in-v6 and other
things.

In the case of ULA (which started this thread) and mapped-v4-v6, does
one really need to use these? One should have more than ample space in
IPv6 to carve out things for special use and null-route those on the
borders in case one does not want them reachable.

And if one does not use ULA etc, one does not source it either.

Greets,
 Jeroen



More information about the ipv6-ops mailing list