IPv6 prefixes in ACLs in BIND 9.3.0 and 9.2.4 ?
JINMEI Tatuya / 神明達哉
jinmei at isl.rdc.toshiba.co.jp
Thu Oct 7 19:07:11 UTC 2004
>>>>> On Thu, 07 Oct 2004 12:50:16 -0400,
>>>>> Jason Vas Dias <jvdias at redhat.com> said:
> acl test {
> fec0:ac10:40a5:1/64;
> };
> acl test {
> fec0:ac10:40a5:0001/64;
> };
> acl test {
> fec0:ac10:40a5:0001 / 64;
> };
> acl test {
> fec0:ac10:40a5:1:/64;
> };
> acl test {
> f.e.c.0.a.c.1.0.4.0.a.5.0.0.0.1/64;
> };
None of the above are a valid IPv6 prefix. Please try, e.g.,
acl test {
fec0:ac10:40a5:1:: / 64;
};
JINMEI, Tatuya
Communication Platform Lab.
Corporate R&D Center, Toshiba Corp.
jinmei at isl.rdc.toshiba.co.jp
p.s. the IETF has deprecated the site-local prefix, fec0::/10, (see
RFC3879). Although this does not necessarily mean applications do or
will reject the prefix, I'd basically recommend you to use global
prefixes, even for testing purposes.
More information about the bind-users
mailing list