Dual-Stack Security Exposures
Dual-stack exposures were the last topic Eric Vyncke and myself addressed in the IPv6 security webinar. They range from missing ip6tables on Linux hosts to unintentional split-tunnel VPNs and missing access classes on Cisco IOS devices.
Recent posts in the same categories
IPv6
- Repost: The Benefits of SRv6
- Unintended Consequences of IPv6 SLAAC
- Worth Exploring: SRv6 Test Topologies
- Worth Reading: DNS over IPv6
- Worth Reading: IPv6 Deployment Status
- IPv6 Security in Layer-2 Firewalls
security
- Worth Reading: The Evolution of Network Security
- SR/MPLS Security Framework
- Worth Reading: Cybersecurity Is Broken
- Is BGP TTL Security Any Good?
- Video: Outages Caused by Bugs in BGP Implementations
- Open BGP Daemons: There's So Many of Them
IPsec
- Updated: Impact of IP Fragmentation on Tunnels and Encryption
- High-Speed IPsec on Snabb Switch on Software Gone Wild
- More PCAP Challenges from Johannes Weber
- New: Metro- and Carrier Ethernet Encryptors Market Overview
- Just Out: Metro- and Carrier Ethernet Encryptors Market Overview
- Evaluation Guide: Encryptors for Metro and Carrier Ethernet