nanog mailing list archives

Re: Requirements for IPv6 Firewalls

From: William Herrin <bill () herrin us>
Date: Fri, 18 Apr 2014 14:20:20 -0400

On Fri, Apr 18, 2014 at 2:06 PM, Simon Perreault <simon () per reau lt> wrote:

IMHO, what the IETF can do is recommend a set of behavioural traits that
make IPv6 firewalls behave like good citizens in the Internet ecosystem.
Meaning that a firewall that obeys those requirements will not break the
Internet. For example, passing ICMPv6 Too Big messages is important to
not break the Internet.


That would either be a very short document or a document so
ideologically loaded that it has no technical utility. The Internet is
pretty resilient. There isn't much a firewall can do to break it.

Regards,
Bill Herrin

-- 
William D. Herrin ................ herrin () dirtside com  bill () herrin us
3005 Crane Dr. ...................... Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004

Current thread:

Re: Requirements for IPv6 Firewalls, (continued)
- - - Re: Requirements for IPv6 Firewalls Eugeniu Patrascu (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Timothy Morizot (Apr 18)
    - Re: Requirements for IPv6 Firewalls Mike Hale (Apr 18)
    - Re: Requirements for IPv6 Firewalls Simon Perreault (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Simon Perreault (Apr 18)
    - Re: Requirements for IPv6 Firewalls Mike Hale (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Simon Perreault (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Simon Perreault (Apr 18)
    - Re: Requirements for IPv6 Firewalls William Herrin (Apr 18)
    - Re: Requirements for IPv6 Firewalls Simon Perreault (Apr 18)
    - Re: Requirements for IPv6 Firewalls Jim Clausing (Apr 18)
    - Re: Requirements for IPv6 Firewalls Eugeniu Patrascu (Apr 18)
    - Re: Requirements for IPv6 Firewalls Dobbins, Roland (Apr 18)
    - Re: Requirements for IPv6 Firewalls Jeff Kell (Apr 18)
    - Re: Requirements for IPv6 Firewalls Dobbins, Roland (Apr 18)
    - Re: Requirements for IPv6 Firewalls Jeff Kell (Apr 18)
    - Re: Requirements for IPv6 Firewalls Dobbins, Roland (Apr 18)

(Thread continues...)