[6bone] DoS attacks through 6to4 anycast relay

Pekka Savola pekkas@netcore.fi
Sat, 12 Jul 2003 17:37:13 +0300 (EEST)

Previous message: [6bone] DoS attacks through 6to4 anycast relay
Next message: [6bone] [Article] U.S. shrugs off world's address shortage
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 12 Jul 2003, Rik van Riel wrote:
> On Thu, 10 Jul 2003, Alexander Gall wrote:
> 
> > All networks with global IPv6 connectivity should simply provide a
> > 6to4 router that handles all traffic to 2002::/16 from their
> > customers.  In the best case, 2002::/16 would not need to be in the
> > global routing table at all.
> 
> Does anybody know whether Linux could be set up to have packets
> to 2002::/16 sent out over ipv4 ?
> 
> I would like to avoid using 6to4 relays for 2002::/16, admittedly
> mostly for efficiency reasons.  It would be nice if my packets to
> 2002::/16 didn't need to travel around the world and incur half
> second latencies...

Just enable 6to4 on your router like your would enable it on a host, and 
that should be it.

(E.g. on Red Hat Linux, see /usr/share/doc/initscripts-*/ipv6-6to4.howto.)

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

Previous message: [6bone] DoS attacks through 6to4 anycast relay
Next message: [6bone] [Article] U.S. shrugs off world's address shortage
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]