18 Jan
2022
18 Jan
'22
6:49 a.m.
Sean Donelan wrote on 18/01/2022 11:28:
The top two capabilities: 1) MLD snooping and 2) a simple way to keep IPv6 off certain ports (i.e. ancient 10/100 devices, which don't like it. controlling the multicast floods may also help them).
Most people don't use ipv6 multicast in anger (i.e. anything more than nd / bonjour / etc), so mld snooping isn't that important for small switches. For proper device access control, you also need the ability for the switch to do ND/RA + DHCP snooping / filtering. Otherwise you open yourself to rogue routers and/or address assignment. Nick