map: Prevent IPv4 prefix spoofing during IPv6 -> IPv4 - vpp

diff options

author	Jon Loeliger <jdl@netgate.com>	2020-01-28 07:30:28 -0600
committer	Andrew Yourtchenko <ayourtch@gmail.com>	2020-08-12 15:59:46 +0000
commit	b9536214058a3b736ef3e739fb070961104e8f07 (patch)
tree	307ff7d50f6bc365c18a5a76b4fd742bf17becfd /src/tools
parent	18b3c002bf606c0a9f85781887b73e748a46a6da (diff)

map: Prevent IPv4 prefix spoofing during IPv6 -> IPv4

Prevent malicious packets with spoofed embedded IPv4 addresses by limiting the IPv6 ingress packets to known MAP-T domains. Drop spoofed packets. Add several tests that ensure spoofing isn't allowed. Type: fix Fixes: fc7344f9be Change-Id: I80a5dd10d5fe7492e3a1b04de389d649a78065e2 Signed-off-by: Jon Loeliger <jdl@netgate.com> (cherry picked from commit 65866f03d96bd41b99b1c823ea6f38cd77fac58c)

Diffstat (limited to 'src/tools')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: