* Philip Homburg: > So what I was thinking of, what if a router that is under attack would > periodically multicast to the all-nodes multicast address a message > saying "help I'm under attack". Upon receiving such a message all > nodes send a neighbor solication to the router. This populates the > router's neighbor cache with entries for all of it's neighbors. Thus > ensuring that normal traffic can flow uninterrupted.
Assuming that neighbor discovery is vulnerable, wouldn't the same issue affect the triggered solications? And isn't it a fine way to overload a router on a large subnet? -- Florian Weimer <fwei...@bfk.de> BFK edv-consulting GmbH http://www.bfk.de/ Kriegsstraße 100 tel: +49-721-96201-1 D-76133 Karlsruhe fax: +49-721-96201-99 -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------