Hi,
Operational input: when discussing the use of RFC4941 (privacy) addresses with
our LAN/workstation admins, it seemed as if there would be great benefit from
being able to specify an RFC3484 rule which would in essence say:
"do not use privacy addresses when communicating inside the site [a set of
designated destination prefixes], use it by default otherwise"
I don't think this is possible today because rfc3484 policy table only allows
matching by prefixes, not by address type.
Has this come up in discussions / has anyone else thought about this?
Btw: in draft-ietf-6man-rfc3484-revise-01, "fec::/16" should be "fec0::/10".
fec:: would mean 0fec:: and the prefix length is also wrong.
--
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
--------------------------------------------------------------------
IETF IPv6 working group mailing list
[email protected]
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------
