Dealing with filtered 6to4 clients

Erik Kline ek at google.com
Mon Nov 2 22:50:42 CET 2009


2009/10/27 Martin List-Petersen <martin at airwire.ie>:
> Geert Hendrickx wrote:
>> On Tue, Oct 27, 2009 at 12:10:35PM +0000, Martin List-Petersen wrote:
>>> Martin List-Petersen wrote:
>>>> I wouldn't encourage that, but if your eyeball networks are that
>>>> paranoid, that's a way, how they can be in control. They could then
>>>> choose not to provide AAAA records to 6to4- and teredo- clients.
>>>>
>>>> Anyhow .. that's a hack and not to be encouraged, really.
>>> Arghh .. me not thinking today. Obviously they can't know, what the
>>> client has, but they could whitelist known good deployments then.
>>
>>
>> Or, on your side, you could not serve AAAA records to (the DNS chaches of)
>> the problematic network(s)?
>
> That is the better approach alright.

Until the IPv6 Internet gets less sucky it's the pretty much the only
approach we've been able to come up with.



More information about the ipv6-ops mailing list