We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hi all, In this code, geth restrict only 2 IP address is allowed in the same subnet (/24) to prevent from attack of the eclipse.
geth
go-ethereum/p2p/discover/table.go
Lines 52 to 53 in 9e0f934
In IPv4, it's ok. But in IPv6, /24 is quite a big subnet. For example,
I think good limit should be:
Reasons: /24 in IPv4 is the minium length in GLOBAL routing table. /48 in IPv6 is the minium length in GLOBAL routing table.
For higher securtiy, the follwing limit may also be considerate:
The text was updated successfully, but these errors were encountered:
Thank you for bringing this up. I will investigate how to improve IPv6 limits very soon.
Sorry, something went wrong.
fjl
No branches or pull requests
Hi all,
In this code,
geth
restrict only 2 IP address is allowed in the same subnet (/24) to prevent from attack of the eclipse.go-ethereum/p2p/discover/table.go
Lines 52 to 53 in 9e0f934
In IPv4, it's ok. But in IPv6, /24 is quite a big subnet.
For example,
I think good limit should be:
Reasons:
/24 in IPv4 is the minium length in GLOBAL routing table.
/48 in IPv6 is the minium length in GLOBAL routing table.
For higher securtiy, the follwing limit may also be considerate:
The text was updated successfully, but these errors were encountered: