https://tools.ietf.org/html/rfc7526
- Mark > On 14 May 2019, at 17:24, Amos Rosenboim <[email protected]> wrote: > > Hello, > > > As we are trying to tighten the security for IPv6 traffic in our network, I > was looking for a reference IPv6 ingress filter. > I came up with Job Snijders suggestion (thank you Job) that can be > conveniently found at whois -h whois.ripe.net fltr-martian-v6 > > After applying the filter I noticed some traffic from 6to4 addresses > (2002::/16) to our native IPv6 prefixes (residential users in this case). > The traffic is a mix of both UDP and TCP but all on high port numbers on both > destination and source. > It seems to me like some P2P traffic, but I really can’t tell. > > This got me thinking, why should we filter these addresses at all ? > I know 6to4 is mostly dead, but is it inherently bad ? > > And if so, why is the prefix (2002::/16) still being routed ? > > Thanks, > > Amos Rosenboim > -- >
