ipv6 DOS (denial of service) question
We are using 2.6.21 version and have used 'IPV6 fragmentation' technique to observe how the kernel behaves and the result is not good. Is there a patch related to this?
|
ipv6 DOS
Hi, I am in process of implementing ipv6 firewall so I have given you this link
http://news.softpedia.com/news/Linux...oS-50143.shtml although 1 am using 2.6.33 - hope it gives you some insight. There seems to be too much information about fragmentation issues to really get a grip on the basic issue. However, since routers do not re-assemble fragmented ipv6 frames I expect there is the crux of the issue. The fragmentation must be initiated by the sending host and re-assembled by the recipient. Could be there is a problem with many older routers but that is just a a guess. Like I said too much information none of which is consistent. Good luck |
All times are GMT -5. The time now is 06:09 AM. |