RFC 3964

Security Considerations for 6to4, December 2004

Canonical URL:
https://www.rfc-editor.org/rfc/rfc3964.txt
File formats:
Plain TextPDF
Status:
INFORMATIONAL
Authors:
P. Savola
C. Patel
Stream:
IETF
Source:
v6ops (ops)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC3964

Discuss this RFC: Send questions or comments to v6ops@ietf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

The IPv6 interim mechanism 6to4 (RFC3056) uses automatic IPv6-over-IPv4 tunneling to interconnect IPv6 networks. The architecture includes 6to4 routers and 6to4 relay routers, which accept and decapsulate IPv4 protocol-41 ("IPv6-in-IPv4") traffic from any node in the IPv4 internet. This characteristic enables a number of security threats, mainly Denial of Service. It also makes it easier for nodes to spoof IPv6 addresses. This document discusses these issues in more detail and suggests enhancements to alleviate the problems. This memo provides information for the Internet community.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×