Hi
On Fri 17. May 2024 at 13.05, Daniel Verlouw wrote:
> Hi,
>
> On Thu, May 16, 2024 at 8:22 PM Antti Ristimäki via juniper-nsp
> wrote:
> > I thought this issue had been resolved already years ago, but I
> > noticed that JunOS still happily forwards IPv6 packets with link-local
> > source
Hi,
On Thu, May 16, 2024 at 8:22 PM Antti Ristimäki via juniper-nsp
wrote:
> I thought this issue had been resolved already years ago, but I
> noticed that JunOS still happily forwards IPv6 packets with link-local
> source address towards remote destinations. This of course violates
> RFC4291.
On Fri, 17 May 2024 at 10:36, Antti Ristimäki wrote:
> iACL design becomes a bit more challenging if you want to keep the
> link-local things link local (e.g. there are legit ND packets with
> link-local srcaddr and GUA dstaddr). It is doable, though.
Not disagreeing, but what are these
Hi,
On Fri, May 17, 2024 at 9:26 AM Saku Ytti wrote:
>
> On Thu, 16 May 2024 at 21:23, Antti Ristimäki via juniper-nsp
> wrote:
>
> > Does anyone have any insight into this? This issue was discussed on
> > this list already over 10 years ago, for example:
> >
On Thu, 16 May 2024 at 21:23, Antti Ristimäki via juniper-nsp
wrote:
> Does anyone have any insight into this? This issue was discussed on
> this list already over 10 years ago, for example:
> https://puck.nether.net/pipermail/juniper-nsp/2012-April/023134.html
Personally I'm not convinced I'd
Hello,
I thought this issue had been resolved already years ago, but I
noticed that JunOS still happily forwards IPv6 packets with link-local
source address towards remote destinations. This of course violates
RFC4291. Also recent JunOS releases seem broken, tested with e.g. 21.4
and 23.2.
Does
6 matches
Mail list logo