Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
During the live event, Cisco subject matter experts Eric Vyncke and Andrew Yourtchenko will explain the security myths and security issues in the IPv6 protocol. Though IPv6 is only available to 3 percent of Internet users, this number is doubling...
Yet another classical question First, please note that NAT (while being often colocated with a firewall) offers nearly no security (after all most of the botnet members are being a home router doing NAT -- CodeRed, Nimda have been replaced by more s...
SeanMay I suggest to post your question in a generic IPv6 thread? This one is dedicated to security But, in short, "it depends"... Most deployments start with the Internet facing edge (web / email /VPN servers which is the most critical issue) then ...
Jim,I have not done the tests you mention in my lab (there are not so many users using IPsec VPN between IOS & ASA ), so, I can only partially reply to your question.Indeed, IOS VTI (native IPsec without GRE) does not support one protocol family in...
[Retyping the whole reply after this $*%! system failed to accept my reply ]Hi JimNice to read from you again and thanks for participating in the webcast! Cisco has implemented 'undetermined-transport' years before RFC 7112 in order to block those to...
Carlos,Please note that blocking IPv6 traffic is not really the right thing to do. You will spend a lot of energy to implement it (see below) and some applications may fail (by default Windows and others try to use IPv6 link-local communication). Mor...
