James Carlson <[EMAIL PROTECTED]> writes: > Peter Memishian writes: >> That said: >> >> # ndd -set /dev/arp arp_probe_count 0 >> # ndd -set /dev/arp arp_fastprobe_count 0 >> # ndd -set /dev/arp arp_defend_interval 0 > > That won't actually disable DAD. If we detect conflicts on a running > interface, we'll still take it down. There's no supported means to > turn it completely off, and that's by intention. Networks with > duplicate addresses are simply broken.
This is probably a stupid question, but: Doesn't that provide a rather trivial DOS attack vector? Boyd _______________________________________________ networking-discuss mailing list [email protected]
