> From: Fernando Gont [mailto:[email protected]] > Sent: Tuesday, December 18, 2012 3:31 PM
> >> My take is that the decision about whether to deploy v6 is (and > >> should) happen as a result of something else, and not just to address > >> these issues. > > [WEG] I agree, however, my view is that this is yet one more reason > > that should contribute to the decision to deploy IPv6, rather than > > being evaluated independently from that discussion. I think we agree > > that the message of this document is "IPv6 is here, and it may be on > > your 'IPv4-only' network, you need to consider the security > > implications." What I'm suggesting is that there's an added thing > > which is "IPv6 deployments are happening, and this idea of filtering > > the traffic is a temporary solution to protect your network until you > > deploy IPv6." Perhaps with some qualifier about the fact that some > > networks will have justification to remain IPv4-only for longer than > > others, but this should be the exception rather than the default. > > So, have about including something along those lines in the intro. i.e. > > "IPv6 deployments are happening, and thus filtering IPv6 traffic to > mitigate IPv6 security implications on IPv4 networks is a temporary > solution to protect your network until you deploy IPv6. In some > exceptional cases (such as e.g. military operations networks), this > approach to mitigating the aforementioned security implications could be > thought of as a longer-term strategy." > > > Would the above changes address your concerns? [WEG] yes, thanks a lot Wes George This E-mail and any of its attachments may contain Time Warner Cable proprietary information, which is privileged, confidential, or subject to copyright belonging to Time Warner Cable. This E-mail is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this E-mail, you are hereby notified that any dissemination, distribution, copying, or action taken in relation to the contents of and attachments to this E-mail is strictly prohibited and may be unlawful. If you have received this E-mail in error, please notify the sender immediately and permanently delete the original and any copy of this E-mail and any printout. _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
