Guys, go visit the IETF SEND WG:
http://www.ietf.org/html.charters/send-charter.html
Description of Working Group:
Neighbor Discovery is the basic protocol by which IPv6 nodes discover
their default routers on the local link, and by which nodes on a local
link resolve IPv6 addresses to MAC layer
On Thu, 2003-05-22 at 03:27, Peter Cordes wrote:
> > Sure, I suppose so, at least on hosts that can keep enough state. Though
> > replacing a DHCP server would be a royal PITA!
>
> If you could get the private key out and use it in the new one, it would be
> ok.
Yep, but that's always the easy
On Wed, May 21, 2003 at 11:31:48PM -0400, Anthony DeRobertis wrote:
> On Wed, 2003-05-21 at 21:32, Peter Cordes wrote:
> > On Wed, May 14, 2003 at 03:41:44PM -0400, Anthony DeRobertis wrote:
>
> > Couldn't you do (b) the way SSH handles server public keys?
>
> Sure, I suppose so, at least on hos
On Wed, 2003-05-21 at 21:32, Peter Cordes wrote:
> On Wed, May 14, 2003 at 03:41:44PM -0400, Anthony DeRobertis wrote:
> Couldn't you do (b) the way SSH handles server public keys?
Sure, I suppose so, at least on hosts that can keep enough state. Though
replacing a DHCP server would be a royal P
On Wed, May 14, 2003 at 03:41:44PM -0400, Anthony DeRobertis wrote:
>
> On Wednesday, May 14, 2003, at 03:10 PM, Bill Cerveny wrote:
>
> >This was also the engineer's point -- he felt IPv4 DHCP was broken in
> >this manner and this broken behavior was being perpetuated via IPv6
> >router advert
> "Bill" == Bill Cerveny <[EMAIL PROTECTED]> writes:
Bill> This was also the engineer's point -- he felt IPv4 DHCP was broken
Bill> in this
Bill> manner and this broken behavior was being perpetuated via IPv6
Bill> router
Bill> advertisements.
IPv4 DHCP is broken tha
Bill,
You should check out the work of the Secure Neighbour Discovery (SEND)
Working Group in the IETF which is working hard right now to address this
issue, and also the broader issue of securing the Neighbour Discovery
procedure in IPv6.
http://www.ietf.org/html.charters/send-charter.html
Rega
On Wed, May 14, 2003 at 10:56:48AM -0400, Bill Cerveny wrote:
> changes caused by the router advertisements. "route" failed in my attempts
> to remove the /64 blocks. I ultimately got rid of the routing problems by
> rebooting the Linux systems.
output of the route command and the error message
Bill Cerveny [mailto:[EMAIL PROTECTED] wrote:
> Fixing the routing/addressing problem created by these
> routers was easy to
> fix on my Windows XP laptop by rebooting the laptop. I
Evil do-er! :)
C:\> ipv6 renew
or append an interface number to it to only renew RA's on that interface
jus
On Wednesday, May 14, 2003, at 03:10 PM, Bill Cerveny wrote:
This was also the engineer's point -- he felt IPv4 DHCP was broken in
this manner and this broken behavior was being perpetuated via IPv6
router advertisements.
Well, the only solutions are really:
a) Static adressing
b)
This was also the engineer's point -- he felt IPv4 DHCP was broken in this
manner and this broken behavior was being perpetuated via IPv6 router
advertisements.
I did find a mention of something similar to this problem in an IETF
Internet-draft for proposed extensions to router advertisements a
On Wednesday, May 14, 2003, at 10:56 AM, Bill Cerveny wrote:
My questions:
- What is the recommended set-up for Linux servers which are not
set-up as routers? In my opinion, allowing a server to add
addresses/routing every time a router starts advertising rogue
addressing blocks is dangerous and
Another thing you could have tried is if the engineers in
question still had the routers online or you did still have a legitimate
Cisco router sending out RAs is to setup the rouge RA prefixes with a
lifetime of 0... Let it run for awhile with this new lifetime and any
IPv6-capable box wou
On Wed, May 14, 2003 at 10:56:48AM -0400, Bill Cerveny wrote:
> - What is the recommended set-up for Linux servers which are not set-up as
> routers? In my opinion, allowing a server to add addresses/routing every
> time a router starts advertising rogue addressing blocks is dangerous and
> shou
At my office there are a bunch of engineers (including myself) who like to
experiment with routers. In one case, an engineer connected one interface
of the Cisco router to the general office network and turned on IPv6 with a
site-local address. My Linux and WinXP boxes received the router
adve
15 matches
Mail list logo
