Re: end-user ipv6 deployment and concerns about privacy

; capabilities as it does with v4. This is surprising to me, can you comment on why DHCPv6 TA is being used in this scenario? -- David W. HankinsBIND 10 needs more DHCP voices. Software Engineer There just aren't enough in our heads. Internet Systems Consortium, I

Re: Should routers send redirects by default?

On Tue, Aug 24, 2010 at 01:02:49PM -0700, David W. Hankins wrote: > will ultimately be cleaned. If the destination is reused later, > Ah, I forgot to complete this thought in editing. If packets are sent to the destination later (after a cache entry is expired) the host obviously start

Re: Should routers send redirects by default?

hat your conclusion is false, but rather that it seems to me there are more enumerations in the set. -- David W. HankinsBIND 10 needs more DHCP voices. Software Engineer There just aren't enough in our heads. Internet Systems Consortium, Inc. http://bind10.isc.org/ pgpufEv5bMuqI.pgp Description: PGP signature

Re: Should routers send redirects by default?

relatively short period of time (such as devices that have a large number of active sessions with hosts that its routers redirect; web servers, smtp systems...). [1] Li, Q., Jinmei, T., Shima, K., "IPv6 Core Protocols Implementation", October 2006. ISBN 13: 978-0-12-447751-

Re: ISC DHCP server failover

, failover is a tool we have whereas DHCP clustering software is so far only a tool we want to create. * Some objects in the future-mirror may be further away than they appear. -- David W. HankinsBIND 10 needs more DHCP voices. Software Engineer There just aren't en

Re: ISC DHCP server failover

ll free pool; it can't allocate the peer's leases. So it doesn't replace entering partner-down for long-term outages. These features were both provided in 4.2.0 (a1 and a2 respectively as memory serves), currently an alpha which I hope to move to its first beta soon. * I'

Re: IPv6 could change things - Was: DMCA takedowns of networks

magnitude, but it's interesting that the software works differently. -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc. -- Jack T. Hankins pgp5lDTPDChD6.pgp Description: PGP signature

Re: {SPAM?} Re: IPv6 Deployment for the LAN

gue AP to insert themselves in the middle. Sometimes in focusing on packet exchanges, we miss the forest for the trees. -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems C

Re: IPv6 Deployment for the LAN

e prefix for the interface. Typically on Linux; ip=/sbin/ip ${ip} -f inet6 addr add ${new_ip6_address}/${new_ip6_prefixlen} \ dev ${interface} scope global -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just

Re: {SPAM?} Re: IPv6 Deployment for the LAN

ng will people accept that a secured DHCPv6 session must rely, in order to function to expectations, upon the unsecurable RA and/or questionably secure SEND? -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to d

Re: IPv6 Deployment for the LAN

bootstrap. Maybe it's possible for some proprietary printer or fileshare network stuff to continue working on LL's (or, ironically, routing protocols or DHCPv6 itself), but anywhere else ("mail.example.com", "contacts.example.com"), anywhere real, and the network

Re: IPv6 Deployment for the LAN

Marxist-turned-Communist philosophy of design. All hosts are equal, everyone gets the same thing. From each according to their ability, to each according to their need. You want to be a router? Go ahead! Send an RA. The hosts are all allowed to freely roam and operate within their own lim

Re: Where to buy Internet IP addresses

say the screen doors were on the plans when I got there. I gather the planners believed they would facillitate use of the ark by hybrid human-acquatic lifeforms that did not exist at the time, nor do they exist today, but were hoped to exist because mermaids and mermen are, like, totally hot. -- Da

DHCPv6 PD chains vs bridging

aries drawn in broadcast domains are administrative in nature and not technical (but still, all automated). -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium,

DHCPv6 PD

> What if the ISP only gave a /60? Then someone gets a STATUS_NoAddrsAvail. -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc. -- Jack

Re: Fiber cut in SF area

ATT; http://cbs5.com/local/phone.internet.outage.2.980578.html Rather widespread "general telco" outage, the county has deployed extra patrol units in the south bay to compensate for not being able to call 911. Third video link in shows repairs underway. -- David W. Hankin

Re: The Confiker Virus.

ey use so many so that, when the good guys bust in the door and shut down the C&C domain/hosting, they can just open up shop somewhere else like nothing happened. Not entirely unlike terrorist cells. -- David W. Hankins"If you don't do it right the first time, Software Engineer

Re: v6 & DSL / Cable modems

still heeds some of its vague handwaving. In DHCPv6, the client submits to the network's will, but still has some of its own vague handwaving choices. It is Marxism (turned Socialism) vs Fascism at its root. I hope I have not spent my year's worth of NANOG tolerance for DHCP related d

Re: v6 & DSL / Cable modems

ion management and control. Or put another way, it fulfills a larger set of requirements, while still keeping the rest as a subset of its offering. -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc. -- Jack T. Hankins pgpyKkdSQfD98.pgp Description: PGP signature

Re: v6 & DSL / Cable modems

urviving router if its default router has failed (and thus will not have to wait for rebinding). This has further config implications as the server(s) are no longer able to detect the difference in a client's renewal or rebinding, but it can be an effective optimization

Re: v6 & DSL / Cable modems [was: Private use of non-RFC1918 IP space (IPv6-MW)]

contrived false factoid that supports your a-priori conclusions. My analysis of your further arguments is that you have selected a proper subset of actual Internet operational needs in order to further justify these same conclusions. I will leave it at that. :) -- David W. Hankins"I

Re: v6 & DSL / Cable modems [was: Private use of non-RFC1918 IP space (IPv6-MW)]

bout pervasive client support for DHCPv6 in jubliant encouragements of DHCPv6 operational experiments and deployment. >> [...] Joe is not entirely wrong. > > Hooray! :-) I am seriously considering admitting I know you. :) -- David W. Hankins"If you don't do it rig

Re: v6 & DSL / Cable modems [was: Private use of non-RFC1918 IP space (IPv6-MW)]

ut some IPv6 addresses for configuration state now and again, so Joe is not entirely wrong. > I can recall many posts over the years from the IPng WG telling people they > didn't need DHCP. There is no need to recall! Subscribe to any IETF mailing list, and be assured you will still

Re: v6 & DSL / Cable modems [was: Private use of non-RFC1918 IP space (IPv6-MW)]

HCPv4 and DHCPv6 are both supersets of network management needs. RA is a vast subset. Herein lies the rub; you have to implement both anyway because a client can not predict what network(s) it is going to be used in. Nobody wins. -- David W. Hankins"If you don't do it righ

Re: v6 & DSL / Cable modems [was: Private use of non-RFC1918 IP space (IPv6-MW)]

logue between operators and IETF, IPv6 has basically thrown that dialogue out with the bathwater, and we're having it all over again. Fun! -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc. -- Jack T. Hankins pgpTe134pDUbT.pgp Description: PGP signature

Re: DNS Amplification attack?

ping a new up-to-date list of IP addresses to filter, as it expands and shrinks, you can greatly reduce your own footprint in these attacks with a quick upgrade. -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just hav

Re: What to do when your ISP off-shores tech support

to do or keep the job they were given, and desired to do it well. That's really what you should be looking for, locality is irrelevant. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins&quo

Re: Another driver for v6?

ild bridges... The only thing to iron out is: Who gets to be (golden) parachute lemmings? -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it

Re: Another driver for v6?

durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc

Re: Another driver for v6?

#x27;s coming. I'm still recommending a variety of caution in that first deployment on production systems. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it

Re: Another driver for v6?

On Thu, Oct 30, 2008 at 08:10:26AM +0100, Mikael Abrahamsson wrote: > On Wed, 29 Oct 2008, David W. Hankins wrote: >> It is almost lunacy to deploy IPv6 in a customer-facing sense (note >> for example Google's choice to put its on a separate FQDN). At > > Could yo

Re: Another driver for v6?

you start telling customers these IPv6 address thingies are useful. IPv6: It's kind of like storing dry food in preparation for the apocalypse. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hank

Re: Network topology [Solved]

ath... Problem is I think even then > the simple devices won't bother to support it. Or if they do, they'll do it wrong. They can't even get ifDescr right. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/

Re: the Intercage mess

an think of better, we'll have to call it "Intercaging". -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it right the first time, Software Engineer

Re: [Fwd:] Nvidia NICs with duplicate mac addresses

ients send inconsistent identifiers, and even with DUID-based id's, I think this is not going to change). This is in addition to today, where such clients consume multiple IPv4 addresses. Insult to injury. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the l

Re: [Fwd:] Nvidia NICs with duplicate mac addresses

l? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it right the first time, Software Engineeryou'll just have to do it again." Internet Systems Consortium, Inc. -- Jack T. Hankins pgpan3CJdrTmQ.pgp Description: PGP signature

Re: SLAAC(autoconfig) vs DHCPv6

either its database or Dynamic DNS (quite a lot of DHCPv6 server software supports Dynamic DNS). But you still wont' have any DHCPv6 clients outside of Vista. This is where the chicken meets the egg on our faces. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the les

Re: SLAAC(autoconfig) vs DHCPv6

please submit them to [EMAIL PROTECTED] -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do it right the first time, Software Engineeryou

Re: SLAAC(autoconfig) vs DHCPv6

the future, I think that isn't precisely possible without welcoming the related philosophical (not religious) debates. -- Ash bugud-gul durbatuluk agh burzum-ishi krimpatul. Why settle for the lesser evil? https://secure.isc.org/store/t-shirt/ -- David W. Hankins"If you don't do

Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?

registry. If DLV registries became 'de rigeur', it would effectively halve the root and by extension the GTLDs' relevance. I do not believe they will permit this to come to pass. Provided they did, we would win anyway, as signing zones itself would have become the norm. -- David W. H

Re: DHCPv6 and stateless autoconf, was: NANOG 40 agenda posted

g, hope to avoid "throwing spaghetti at the wall"), but if you'd rather base your decisions on what you like (or not), you have every right to do so. In my opinion there are a bulk of technical merits that place DHCPv6 ahead of RTadv. I don't like either protocol, but they'