Le 22 sept. 2010 à 03:06, Christian Huitema a écrit : >> no one is arguing nd/ra be removed entirely, as subnet anycast should be. >> the argument is that there are environments where it is not needed and >> dhcp should be able to be used in its place. > > That's reasonable. There are cases where auto configuration does not work > well. A centrally configured solution can mitigate various kind of RA/ND > spoofing attacks, in the same way that static configuration can mitigate ARP > spoofing attacks.
The proposal includes a change in hosts. Of course, if MS and Apple announce an upgrade of all their IPv6 stacks, to the effect that they use DHCPv6 requests to obtain what they no longer get in RAs, that would mitigate the need for backward compatibility. But is this realistic? Regards, RD > > -- Christian Huitema > > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > [email protected] > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > -------------------------------------------------------------------- -------------------------------------------------------------------- IETF IPv6 working group mailing list [email protected] Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
