cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
168
Views
0
Helpful
1
Replies
Highlighted
Beginner

IPv6 Security for Enterprise

I am working on IPv6 security policy. To my understanding, there are two main mitigation techniques to address IPv6 security issues. Now the question is where it should be applied. I have created a table below to verify what type of security is required at each layer of the network. There are other mitiagation which can be added as well.

 

I am lookign for some recommendatiosn from the community. 

 

 First Hop Security (Link Layer Security)Extension Header Mitigation
 RA Guard, DHCP Guard, IPv6 Snooping, Source/Dest guardCheck Order & repetition, Drop Hop-by-Hop &  Fragment Header
Accessx 
Distributionx 
Core x??
Edge x
Data centerx 
1 REPLY 1
Highlighted
Beginner

I should also mention that the Control Plane mitigations and Management Plane mitigations should also be applied regardless of the layer of devices.  

Content for Community-Ad
This widget could not be displayed.