> On 8 Mar 2019, at 6:30 pm, Fernando Gont wrote:
>
> Hello, Mark,
>
> Thanks for your feedback! Please see in-line
>
> On 8/3/19 04:10, Mark Andrews wrote:
>> "Generation of IPv6 fragments in response to ICMPv6 PTB messages has been
>> deprecated in the revised IPv6 specification"
>>
Hello, Mark,
Thanks for your feedback! Please see in-line
On 8/3/19 04:10, Mark Andrews wrote:
> "Generation of IPv6 fragments in response to ICMPv6 PTB messages has been
> deprecated in the revised IPv6 specification"
>
> IS INCORRECT
>
> generation of fragments is “discouraged".
"Generation of IPv6 fragments in response to ICMPv6 PTB messages has been
deprecated in the revised IPv6 specification"
IS INCORRECT
generation of fragments is “discouraged". Discouraged and deprecated mean
different thing.
However, the use of such
Folks,
The Internet Society has posted the "IPv6 Security Frequently Asked
Questions (FAQ)" I authored.
The document is available (in HTML, and also easy-to-print PDF) at:
https://www.internetsociety.org/deploy360/ipv6/security/faq/
If you think there are other questions that should be added,
So how does the 7280SR-48C6 compare to the SLX9540? They are the same
Broadcom chipset right? So the real question, is how does the product
differ in software?
On Wed, Mar 6, 2019 at 10:58 AM Kaiser, Erich wrote:
> Agreed.
>
>
> On Wed, Mar 6, 2019 at 2:16 AM Brandon Martin
> wrote:
>
>>
On Thu, Mar 7, 2019 at 8:33 PM Stephen Satchell wrote:
> OK, OK, so I will continue to rate-limit both, to reasonably high limits
> on the order of 250/second. Absent a DoS, it allows network operators
> to use these tools as they should.
>
> My logs show no harm except to attack traffic.
>
>
On 3/7/19 8:10 AM, Saku Ytti wrote:
> So why not disable ICMP Echo and UDP traceroute, those kids using
> network diagnostics don't need them.
>
> For clue constrained audience fear will always be the most compelling
> argument.
OK, OK, so I will continue to rate-limit both, to reasonably high
On Thu, Mar 7, 2019 at 6:06 PM wrote:
> Sure I get it it's a very valid and a noble point,
> But what you're asking is let it break (yes potentially -it's just
> probability until it happens) for 1000s of subs just so that one kiddo has a
> working niche feature, I can already see what board
Hey Saku,
> From: Saku Ytti
> Sent: Thursday, March 7, 2019 3:29 PM
>
> On Thu, Mar 7, 2019 at 5:19 PM wrote:
>
> > From past experience my assumptions would be more along the lines of if
> it's not mainstream there's a higher likelihood that it might trigger
> exceptions
> in code.
>
> My
> From: NANOG On Behalf Of Arnold Nipper
> Sent: Wednesday, March 6, 2019 6:57 PM
>
> On 04.03.2019 19:15, John Kristoff wrote:
> > On Mon, 4 Mar 2019 01:42:02 +
> > Joshua Miller wrote:
> >
> >> A while back I read somewhere that transit providers shouldn't delete
> >> communities unless
On Thu, Mar 7, 2019 at 5:19 PM wrote:
> From past experience my assumptions would be more along the lines of if it's
> not mainstream there's a higher likelihood that it might trigger exceptions
> in code.
My point is, let it break. Don't pre-emptively drop things that you
don't know to be
> From: Saku Ytti
> Sent: Tuesday, March 5, 2019 3:00 PM
>
> On Tue, Mar 5, 2019 at 4:54 PM wrote:
>
> > Let me play a devil's advocate here, the above statement begs a question
> then, how do you know all that is harmful would you test for every possible
> extension and hw/sw permutation?
> >
12 matches
Mail list logo
