idea for ipv6 allocation scheme

Daniel Wilson daniel@netcomuk.co.uk
Mon, 6 Aug 2001 23:16:47 +0100


Perhaps you could just lob the packet out of the interface that was
literrally "in the right direction" ?

Yeah the bombing thing is a disadvantage - perhaps if the addresses were
less specific it would help ?  I wouldn't place bets on someone finding you
from an address that specified a 10km or even 1km squared area with any
speed.

Just a thought...

--
Dan W

----- Original Message -----
From: "Pekka Savola" <pekkas@netcore.fi>
To: "David Gethings" <dgething@csoserve0.cbg.ops.eu.uu.net>
Cc: "John O Comeau" <jcomeau@world.std.com>; <6bone@ISI.EDU>
Sent: Monday, August 06, 2001 10:56 AM
Subject: Re: idea for ipv6 allocation scheme


> On Mon, 6 Aug 2001, David Gethings wrote:
> > > http://www.ietf.org/internet-drafts/draft-hain-ipv6-pi-addr-00.txt
> > > http://www.ietf.org/internet-drafts/draft-hain-ipv6-pi-addr-use-00.txt
> > >
> > > This creates a more unique 48-bit prefix and leaves the rest to the
users.
> > >
> > I personally think the above is worse than John's idea. Not only does
this
> > require that these /48's be globally routed making it near impossible to
> > aggregate this address space, but it also gives an attacker the 10m
location of
> > a persons or organisations internet access point! A bombers paradise.
>
> Any serious bomber can find out where the company is located anyway... :-)
>
> /48's don't need to be globally routed, provided that there are
> regional/areal exchanges that are willing to advertise the aggregate
> prefixes.  When the number of global /48's increase, I guess the number of
> these would increase too.
>
> --
> Pekka Savola                 "Tell me of difficulties surmounted,
> Netcore Oy                   not those you stumble over and fall"
> Systems. Networks. Security.  -- Robert Jordan: A Crown of Swords
>
>