Dheeraj Kandula <dkandula@gmail.com> wrote: > *Why?* > This is to avoid DOS attacks using RAs from being bombarded onto a linux > machine. Well, you might be able to rate limit them with ip6tables/nftables, but I see no point in only listening to the first X of them. You might as well just disable them and configure a static IPv6. You should also check out "RAGuard" functionality on your L2 switch. RFC6105.
Attachment:
signature.asc
Description: PGP signature