Filtering ULA?
Iljitsch van Beijnum
iljitsch at muada.com
Mon Sep 22 14:11:32 CEST 2008
On 6 sep 2008, at 0:09, david.freedman at uk.clara.net wrote:
> Is there any good reason why I shouldn't be filtering the ULA
> (RFC4193)
> range at the edge (FC00::/7) ?
Are you talking about the prefix or the packets?
Obviously everyone only allows prefixes from customers that are
actually the right prefixes for those customers so the ULA stuff is
rejected implicitly.
Towards your own ISPs or peers you could reject the prefix because
nobody should be advertising it. But if you have a default then you
can send packets to those locations anyway...
As for the packets: what if someone generates an ICMP too big message
with a ULA source address? That could happen. It would be really bad
if people filtered out those packets because that creates PMTUD black
holes.
More information about the ipv6-ops
mailing list