nanog mailing list archives
Re: Time to add 2002::/16 to bogon filters?
From: Niels Bakker <niels=nanog () bakker net>
Date: Tue, 19 Jun 2018 11:15:09 +0200
* marka () isc org (Mark Andrews) [Tue 19 Jun 2018, 01:35 CEST]:
If you filter 2002::/16 then you are performing a denial-of-service attack on the few sites that are still using it DELIBERATELY.
Find me one site with a competent admin that deliberately publishes 2002::/16 in DNS.
None of the problems required removing it from BGP. There were end sites that had firewalls that blocked 6to4 responses and the odd site that ran a gateway and failed to properly manage it. The rest could have been dealt with by configuring more gateways.
Could. But hasn't. Right now it's merely a security risk.People who used to run a gateway and competently managed it took them down years ago when they, being competent admins, realised the utility had run out.
-- Niels.
Current thread:
- RE: Time to add 2002::/16 to bogon filters?, (continued)
- RE: Time to add 2002::/16 to bogon filters? McBride, Mack (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Mark Andrews (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Ca By (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Mark Andrews (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Ca By (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Harald Koch (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Jared Mauch (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? j k (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? joel jaeggli (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Tony Finch (Jun 19)
- RE: Time to add 2002::/16 to bogon filters? McBride, Mack (Jun 18)
- Re: Time to add 2002::/16 to bogon filters? Niels Bakker (Jun 19)
- Re: Time to add 2002::/16 to bogon filters? Wes George (Jun 19)
- Re: Time to add 2002::/16 to bogon filters? Mark Andrews (Jun 19)
- Re: Time to add 2002::/16 to bogon filters? Jared Mauch (Jun 19)