On Wed, Feb 19, 2014 at 10:54:14AM +0100, Gert Doering wrote: > Blocking by /64 by default is likely to get collateral damage. Enough > people do shared subnets with multiple customers in the same /64 - while > I won't recommend it, it is *done*, and blocking the whole /64 because > you have seen SPAM from a single IP out of it is hurting the wrong > people.
This is btw standard setup in the DOCSIS world. All CPEs get a single IP out of a shared /64. In case the CPE is not a customer PC but a router (most customers have that), of course DHCPv6-PD is used to issue prefixes. Nevertheless, there is a non-insignificant amount of people directly attaching their PCs directly to cable modems. The assumption "everyone inside a /64 is the same subject" is flawed, indeed. Best regards, Daniel -- CLUE-RIPE -- Jabber: [email protected] -- dr@IRCnet -- PGP: 0xA85C8AA0
