Jan Zorz

How to Run and Protect an Email Server on IPv6

Jan Zorz

2 min read

0 You have liked this article 0 times.
4

A new RIPE Best Current Operational Practices document is in the making. Please contribute your expertise!


The Best Current Operational Practices Task Force (BCOP TF) was formed at RIPE 67 in October 2013 to initiate and coordinate the process of documenting good common operational practices in networking.

One of the most popular RIPE documents - Requirements for IPv6 in ICT Equipment (ripe-501 which was later superseded ripe-554) - was adopted by the BCOP TF.

Another common issue that kept coming up, was that helpdesks of network operators would melt down if they deployed IPv6 to their end customers as they don’t know anything about IPv6. So we built an online tool and wrote some helpdesk procedures on how to troubleshoot IPv6 issues when users call them – resulting in another useful document that was published as ripe-631.

After addressing this, we repeatedly heard questions about what size of IPv6 prefixes should be given to end-users and should they be assigned statically or dynamically. With the help of a team of experienced co-authors and a lot of feedback from the Internet community, we achieved consensus and the document was published as ripe-690 in October 2017.

Whilst still working on the ripe-690 draft, we heard about another common problem when deploying IPv6:

How to run incoming email servers on IPv6 as there are no IP reputation (black listing) mechanisms to protect from spam coming in from the Internet.

Again we found a great group of experienced volunteers to start documenting some best current operational practices in this area (Sander Steffann, Jordi Palet Martinez, Nasser Heidari, Aaron Hughes and myself). We are also cooperating with the M3AAWG community and the Latin America & Caribbean BCOP Task Force through their co-chairs Ariel Weher and Luis Balbinot.

The call for volunteers is always open, so if you are an experienced system or network operator who’s running your email server on IPv6 and is successfully detecting and blocking spam along with other email attacks, please leave a comment below or contact us at labs@ripe.net.

We will be sharing the draft as soon as possible and we are planning to discuss progress on this document at the RIPE 76 meeting in Marseilles in May 2018.

It’s time for another BCOP, please join us!

0 You have liked this article 0 times.
4

You may also like

View more

About the author

Jan Zorz Based in Skofja Loka, Slovenia

VP of 6connect Labs; Global NOG Alliance (GNA) co-founder and board member; SINOG chairman; SEE10 PC chairman; RIPE PC vice-chair; IPv6 consultant and long time promotor

Comments 4