> Its harder w/ v4 than v6. v6, its dirt simple. > turn on routing for your DNS server. It advertizes > its self and the well-known address to the local segment. > Odds are that the well-known prefix is "nearer" from > this new router than from the "offical" egress point. > Other nodes, listening to RA/ND see this new router > and the well-known prefix. can you say hijack?
That's exactly the words which I expect. As Itojun said, it's an issue of routing security. As I said, >Yes, there are security issues, but no worse than non-well-known > address methods. you have almost the same issue which you described above, whether you use well-known or non-well-known. --- Toshi -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
