This assumes a single machine scanning, not a botnet of
1000 or even
the 1.5m the dutch gov't collected 2 yrs ago.
Again, a sane discussion is in order. Scanning isn't AS
EASY, but it
certainly is still feasible,
With 1.5 million hosts it will only take 3500 years... for a
On Tue, 29 May 2007, Donald Stahl wrote:
That said- ARIN is handing out /48's- should we be blocking validly
assigned networks?
your network might have to to protect it's valuable routing slots. There
are places in the v4 world where /24's are not carried either. So, as Bill
said just
On Tue, 29 May 2007, Donald Stahl wrote:
That said- ARIN is handing out /48's- should we be blocking validly
assigned networks?
your network might have to to protect it's valuable routing slots. There
are places in the v4 world where /24's are not carried either. So, as Bill
said
vixie had a fun discussion about anycast and dns... something about him
being sad/sorry about making everyone have to carry a /24 for f-root
everywhere.
Whether it's a /24 for f-root or a /20 doesn't really make a difference-
it's a routing table entry either way- and why waste addresses.
I
RIPE may only give out /32's but ARIN gives out /48's so there wouldn't be
any deaggregation in that case.
The RIPE NCC assign /48s from 2001:0678::/29 according to ripe-404:
http://www.ripe.net/ripe/docs/ripe-404.html
Yeah I missed that. This matches ARIN's policy for critical
On Tue, 29 May 2007, David Conrad wrote:
Should've clarified: this was in the context of IPv4...
To be honest, I'm not sure what the appropriate equivalent would be in IPv6
(/128 or /64? Arguments can be made for both I suppose).
There have been discussions of this sort made over the
On Tue, May 29, 2007 at 06:14:51PM +0100, Brandon Butterworth wrote:
You get one shot at fixed prefix size filters, miss and you'll pay
forever. Which is more scarce, /32's or routing table entries.
your first lema is false.
and RTE are more scarce.
brandon
let
This assumes a single machine scanning, not a botnet of 1000 or even the
1.5m the dutch gov't collected 2 yrs ago.
Again, a sane discussion is in order. Scanning isn't AS EASY, but it
certainly is still feasible,
With 1.5 million hosts it will only take 3500 years... for a _single_ /64!
I'm
8 matches
Mail list logo
