[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ipv6 bogon / martian filter - simple

Subject: ipv6 bogon / martian filter - simple
From: wmaton at ryouko.imsb.nrc.ca (William F. Maton Sotomayor)
Date: Mon, 14 Jun 2010 20:36:51 -0400 (EDT)
In-reply-to: <[email protected]>
References: <[email protected]>

On Mon, 14 Jun 2010, Brandon Applegate wrote:

> I mean really simple.  Like 2000::/3.  If it's not in there it's bogon, yes ?

Been using that on the advanced networks side for ... OK, years.  Seems to 
work.  Kept unseemingly bogons like 1000::/3 out, except for the 
deprecated 6bone pTLA, 3FFF::

> What I'm really asking, is for folks thoughts on using this - is it too 
> restrictive ?

For leaks of old 6bone space, which I haven't seen for a long while, 
probably not.  But filter aginst that, and maybe it will be fine.  It's 
all in the RIR allocations....

> How long until it's obsolete ?
>
> Should be a really long time no ?

Mmm...Last table entry in my table is: 2C0F:FE18::/32.  Maybe 2000::/4 
will do, but that might not last very long as an ACL, given the proximty 
of 2Cxx:: to 2FFF::

> Again, just looking for some feedback either way.  Would be very nice to have 
> a single line ACL do this job.
>
> --
> Brandon Applegate - CCIE 10273
> PGP Key fingerprint:
> 7407 DC86 AA7B A57F 62D1 A715 3C63 66A1 181E 6996
> "SH1-0151.  This is the serial number, of our orbital gun."
>
>

wfms

References:
- ipv6 bogon / martian filter - simple
  - From: brandon at burn.net (Brandon Applegate)

Prev by Date: ipv6 bogon / martian filter - simple
Next by Date: 2010.06.14 NANOG 49 day 1 notes
Previous by thread: ipv6 bogon / martian filter - simple
Next by thread: ipv6 bogon / martian filter - simple
Index(es):
- Date
- Thread