It's also worth noting that the old presumption that MAC-based
interface identifiers are normal and anything else is strange is
obsolete. See http://tools.ietf.org/html/draft-ietf-6man-ug-06
which is approved in the RFC queue already and
http://tools.ietf.org/html/draft-ietf-6man-default-iids-00
fo
Hi,
> 1) What's the pattern with which addresses are generated/assigned? Are
> they sequential (fc00::1, fc00::2, etc.)? Random? Something else?
>
We use our dhcpy6d (http://dhcpy6d.ifw-dresden.de) which allows 4
different address categories:
- sequential range like fd00::1, fd00::2
- completely
>> /64 netmask opens up nd cache exhaustion as a DoS vector.
>
> FUD.
I probably should have qualified this statement a little better before
posting it.
Large locally-connected connected l2 domains can open up nd cache
exhaustion and many other problems as DoS vectors if the operating systems
co