Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6ops-icp-guidance-03.txt]
Hui Deng <denghui02@gmail.com> Tue, 13 March 2012 04:23 UTC
Return-Path: <denghui02@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20FD711E8083 for <v6ops@ietfa.amsl.com>; Mon, 12 Mar 2012 21:23:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.332
X-Spam-Level:
X-Spam-Status: No, score=-103.332 tagged_above=-999 required=5 tests=[AWL=0.266, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d+4LUW2aNeO8 for <v6ops@ietfa.amsl.com>; Mon, 12 Mar 2012 21:23:00 -0700 (PDT)
Received: from mail-gy0-f172.google.com (mail-gy0-f172.google.com [209.85.160.172]) by ietfa.amsl.com (Postfix) with ESMTP id BF12E11E807F for <v6ops@ietf.org>; Mon, 12 Mar 2012 21:23:00 -0700 (PDT)
Received: by ghbg16 with SMTP id g16so138595ghb.31 for <v6ops@ietf.org>; Mon, 12 Mar 2012 21:22:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=rxN7gUeL38bN0mfxbwT2bsxHnakO9ViQsW+9YHkb+0w=; b=g5zfHQHR2b7fwQL733FkMLnqjFoVlSkIqBWDI0LEg1v4fuIEFWgUeAOWJfG98TtD6H EGU7RB++0mJiJyczaNXDGisvDnDg+zfdzWx+eSmUyxoB//nsdEF7NDyXNZAMdqYL+wNG 2jTZevU2dsrPtt1g3gXgG1PqZ4gwIiuWe8bdelfUduPfDKU3zExMOo1RBODqFbFQvxAb sD0rYbu5RhAFIEc2V1C58+nsW3iVEZym3nzm5sguC+fEplNeBq7rDnI8SSpzVRHVn3ES BBbvtxT97D97eJih7tD+UzIII+zr25K4HhF0dI9JkDoTzAorQGy6Ln4owMoX0xpCrog+ DMRQ==
MIME-Version: 1.0
Received: by 10.236.197.74 with SMTP id s50mr15495349yhn.127.1331612579792; Mon, 12 Mar 2012 21:22:59 -0700 (PDT)
Received: by 10.147.123.12 with HTTP; Mon, 12 Mar 2012 21:22:59 -0700 (PDT)
In-Reply-To: <4F5E5922.4050501@gmail.com>
References: <4F45B554.2060103@gmail.com> <CANF0JMBbQsApjcDeiFK0pi-Qz=jOGFQVvCrPCPW+aVzCwTJx4g@mail.gmail.com> <4F5CF9B2.5070702@gmail.com> <CANF0JMBMwvAq7FNXpTOcEAjJrftgBfDaBsyBV43Qf33jN9fw-g@mail.gmail.com> <4F5E5922.4050501@gmail.com>
Date: Tue, 13 Mar 2012 12:22:59 +0800
Message-ID: <CANF0JMAE+McBJ-0MZ_7X8fNUAtFkv5sOb-YJgV4FJ_0eesZxJQ@mail.gmail.com>
From: Hui Deng <denghui02@gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Content-Type: multipart/alternative; boundary="20cf3040e37acc059504bb1836a3"
Cc: IPv6 Operations <v6ops@ietf.org>
Subject: Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6ops-icp-guidance-03.txt]
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Mar 2012 04:23:02 -0000
Hi Brian I am fine to keep it a seperate topic, maybe write an guidance document for Prevention from DDOS in IPv6 sounds reasonable -Hui 2012/3/13 Brian E Carpenter <brian.e.carpenter@gmail.com> > Hi, > > On 2012-03-12 17:00, Hui Deng wrote: > ... > >>> 4) ICP need to fully understand how to avoid DDOS when they launch the > >>> IPv6, otherwise they will always need NAT solution > >> Can you explain that please? > >> > > this expecting that this document could explain how to avoid DDOS in > > detail, otherwise, they have to deploy special NAT to handle this by > > configure some policy over there. > > I am very confused about how a NAT algorithm can be configured to detect > a DDOS attack. I can certainly understand that a box that contains a NAT > algorithm might also contain a DDOS detection algorithm, but that is > a separate question. > > Maybe what we need is a specific document on detecting and defeating DDOS > attacks in IPv6? That sounds like a major topic in itself, and it isn't > only for ICPs. > > Brian >
- [v6ops] [Fwd: I-D Action: draft-carpenter-v6ops-i… Brian E Carpenter
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… John Mann
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Brian E Carpenter
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… John Mann
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Hui Deng
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Brian E Carpenter
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Arturo Servin
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Joel jaeggli
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Brian E Carpenter
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Hui Deng
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Hui Deng
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Brian E Carpenter
- Re: [v6ops] [Fwd: I-D Action: draft-carpenter-v6o… Hui Deng