Dheeraj Kandula <[email protected]> wrote: > *Why?* > This is to avoid DOS attacks using RAs from being bombarded onto a linux > machine.
Well, you might be able to rate limit them with ip6tables/nftables, but I see no point in only listening to the first X of them. You might as well just disable them and configure a static IPv6. You should also check out "RAGuard" functionality on your L2 switch. RFC6105.
signature.asc
Description: PGP signature
