Reply to post: IPv6 and CIDR

It's begun: 'First' IPv6 denial-of-service attack puts IT bods on notice

Enno

IPv6 and CIDR

The biggest issue I see in the glorious IPv6 future is that one of the current (very poor) mitigation strategies used by some ISPs (cough, Telstra here in Oz) is to unroute targeted destination subnets to unload the attack traffic from their links. In the brave new IPv6 world with it's baked in CIDR routing that will of course no longer be possible...

It's all very well having your firewall correctly configured to keep the DDoS traffic out of your systems. But if the link to them is taken down by flooding they still accomplished their goal. Nor clear what it gets them apart from shits and giggles, the occasional bit of corporate blackmail notwithstanding.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019