Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation

To: tech-net%NetBSD.org@localhost
Subject: Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
From: Mouse <mouse%Rodents-Montreal.ORG@localhost>
Date: Sun, 21 Jun 2026 07:43:46 -0400 (EDT)

> I see this approach as problematic:

> [...]

>   you're using it to configure firewall, but arp/ndp is not
>   authenticated

It's possible malicious hosts on the inside are not within the poster's
threat model.  (They certainly aren't within mine.)

>   you're assuming not using privacy extensions

This is problematic?  Not everyone feels a need for them.

/~\ The ASCII				  Mouse
\ / Ribbon Campaign
 X  Against HTML		mouse%rodents-montreal.org@localhost
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

References:
- ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
  - From: Martin Husemann
- Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
  - From: Greg Troxel

Prev by Date: Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
Previous by Thread: Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
Next by Thread: Re: ndp(1) and arp(1) enhancements for easier scripting of IPv6 prefix delegation
Indexes:

Home | Main Index | Thread Index | Old Index