Re: Experience setting up IPv6 via 6to4 for Debian networks

To: "Jeremy T. Bouse" <jbouse@debian.org>
Cc: debian-ipv6@lists.debian.org
Subject: Re: Experience setting up IPv6 via 6to4 for Debian networks
From: Kalle Olavi Niemitalo <kon@iki.fi>
Date: 10 Apr 2003 20:56:22 +0300
Message-id: <[🔎] 874r565j95.fsf@Astalo.kon.iki.fi>
In-reply-to: <[🔎] 20030410133402.GA28234@UnderGrid.net>
References: <[🔎] 8B83FE17-6B21-11D7-B472-000393817488@mars.org> <[🔎] Pine.LNX.4.53.0304100957370.13198@trider-g7.ext.fabbione.net> <[🔎] 20030410133402.GA28234@UnderGrid.net>

"Jeremy T. Bouse" <jbouse@debian.org> writes:

> 	Yes, at the most recent IETF IPv6 work group meetings in
> San Francisco it was finally determined that site-local was to
> be deprecated.

Why is that?  I find site-local addresses quite convenient for
access control.  I have one machine with a public dynamic IPv4
address.  It then advertises 6to4 and site-local prefixes to a
few other machines in my local network.  I have set these other
machines to accept connections from site-local addresses only.
This is pretty safe as the gateway filters those addresses in
both directions.  I can't easily put global addresses in
hosts.allow because the prefix can change at any time.

Reply to:

Follow-Ups:
- Re: Experience setting up IPv6 via 6to4 for Debian networks
  - From: "Jeremy T. Bouse" <jbouse@debian.org>

References:
- Experience setting up IPv6 via 6to4 for Debian networks
  - From: Rob Leslie <rob@mars.org>
- Re: Experience setting up IPv6 via 6to4 for Debian networks
  - From: Fabio Massimo Di Nitto <fabbione@fabbione.net>
- Re: Experience setting up IPv6 via 6to4 for Debian networks
  - From: "Jeremy T. Bouse" <jbouse@debian.org>

Prev by Date: Re: Experience setting up IPv6 via 6to4 for Debian networks
Next by Date: Re: Experience setting up IPv6 via 6to4 for Debian networks
Previous by thread: Re: Experience setting up IPv6 via 6to4 for Debian networks
Next by thread: Re: Experience setting up IPv6 via 6to4 for Debian networks
Index(es):
- Date
- Thread