nanog mailing list archives
Re: SOHO IPv6 switches
From: Nick Hilliard <nick () foobar org>
Date: Tue, 18 Jan 2022 11:49:08 +0000
Sean Donelan wrote on 18/01/2022 11:28:
The top two capabilities: 1) MLD snooping and 2) a simple way to keep IPv6 off certain ports (i.e. ancient 10/100 devices, which don't like it. controlling the multicast floods may also help them).
Most people don't use ipv6 multicast in anger (i.e. anything more than nd / bonjour / etc), so mld snooping isn't that important for small switches.
For proper device access control, you also need the ability for the switch to do ND/RA + DHCP snooping / filtering. Otherwise you open yourself to rogue routers and/or address assignment.
Nick
Current thread:
- SOHO IPv6 switches Sean Donelan (Jan 18)
- Re: SOHO IPv6 switches Nick Hilliard (Jan 18)
- Re: SOHO IPv6 switches Mikael Abrahamsson via NANOG (Jan 18)
- ODP: SOHO IPv6 switches Marcin Gondek (Jan 18)
- Re: SOHO IPv6 switches Brandon Martin (Jan 18)
- Re: SOHO IPv6 switches Bjørn Mork (Jan 18)
- Re: SOHO IPv6 switches Sean Donelan (Jan 19)