During the live event, Cisco subject matter experts Eric Vyncke and Andrew Yourtchenko will explain the security myths and security issues in the IPv6 protocol. Though IPv6 is only available to 3 percent of Internet users, this number is doubling...
Yet another classical question :-)First, please note that NAT (while being often colocated with a firewall) offers nearly no security (after all most of the botnet members are being a home router doing NAT -- CodeRed, Nimda have been replaced by more...
SeanMay I suggest to post your question in a generic IPv6 thread? This one is dedicated to security :-)But, in short, "it depends"... Most deployments start with the Internet facing edge (web / email /VPN servers which is the most critical issue) the...
Jim,I have not done the tests you mention in my lab (there are not so many users using IPsec VPN between IOS & ASA :-) ), so, I can only partially reply to your question.Indeed, IOS VTI (native IPsec without GRE) does not support one protocol family ...
[Retyping the whole reply after this $*%! system failed to accept my reply ]Hi JimNice to read from you again and thanks for participating in the webcast! Cisco has implemented 'undetermined-transport' years before RFC 7112 in order to block those to...
Carlos,Please note that blocking IPv6 traffic is not really the right thing to do. You will spend a lot of energy to implement it (see below) and some applications may fail (by default Windows and others try to use IPv6 link-local communication). Mor...
