ipv6 – Page 3 – WindowsTechs.com

Best methods to mitigate DDOS with changing IP sources

Posted on March 2, 2021 by user1709076

Source ip addresses can be spoofed. And because of IPv6 it is not enough to keep a look-up table of ip addresses that are excluded from visiting a website, because with ipv6 there are now enough ip addresses for a single sender to spoof to… Continue reading Best methods to mitigate DDOS with changing IP sources→

First time setup of OpenVPN, cannot connect. Network is Unreachable. PiVPN

Posted on December 1, 2020 by WorkingJeff

So i got an orange pi pc running armbian with pivpn/ openvpn with ethernet connected to my router. i have spent the last few days trying and researching on how to setup everything but i cannot get the client to connect as i do not know wha… Continue reading First time setup of OpenVPN, cannot connect. Network is Unreachable. PiVPN→

How to Prevent Attacker from Abusing IPv4-embedded IPv6 to Bypass Security Mechanism?

Posted on November 20, 2020 by maximillian1

Section 5.3 of RFC6052 explained how an attacker could abuse the NAT64 translation mechanism to bypass security mechanism such as firewall or IDS/IPS if those devices only have an IPv4 blacklist. The mitigation is to convert the IPv4-embed… Continue reading How to Prevent Attacker from Abusing IPv4-embedded IPv6 to Bypass Security Mechanism?→

Disabling an ipv6 firewall [closed]

Posted on November 18, 2020 by Ackey

Why would someone want to disable an ipv6 firewall. Are they trying to hack my router?

Continue reading Disabling an ipv6 firewall [closed]→

Reasons for disabling IPv6 on the firewall [closed]

Posted on November 18, 2020 by Kodi tangi

My buddy disabled my ipv6 firewall. Is this so he can hack my internet?

Continue reading Reasons for disabling IPv6 on the firewall [closed]→

Is disabling IPv6 an effective workaround for "Bad Neighbor" Vulnerability (CVE-2020-16898)?

Posted on October 19, 2020 by Travis Madson

CVE-2020-16898 is a remote code execution vulnerability caused by the improper handling of ICMPv6 Router Advertisement packets by Windows TCP/IP stack. Microsoft’s recommended workaround is to disable ICMPv6 RDNSS component.
My question is… Continue reading Is disabling IPv6 an effective workaround for "Bad Neighbor" Vulnerability (CVE-2020-16898)?→

Community detection: CVE-2020-16898

Posted on October 15, 2020 by Ben Reardon

By Ben Reardon, Corelight Security Researcher This month’s Microsoft Patch Tuesday included a severe Remote Code Execution vulnerability in the way that Windows TCP/IP handles IPv6 “Router Advertisement” ICMP messages. Due to the severity and wide scop… Continue reading Community detection: CVE-2020-16898→

Windows “Ping of Death” bug revealed – patch now!

Posted on October 14, 2020 by Paul Ducklin

No one has figured out how to run code with this bug yet – but if they do, you can bet that someone will turn it into a computer worm. Continue reading Windows “Ping of Death” bug revealed – patch now!→

What are the improvements in IPv6 security? [duplicate]

Posted on September 24, 2020 by Legend

Since we are running out of IPv4, we move to IPv6. IPv6 can provide larger address space. In some blog posts, they said IPv6 adds security more than IPv4 but they did not explain well.Can anyone explain how IPv6 improves security?

Continue reading What are the improvements in IPv6 security? [duplicate]→

What is the most restrictive way to allow IPv6 ICMP requests on iptables?

Posted on July 24, 2020 by sunknudsen

This is what I have so far but it is pretty open.
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT DROP [0:0]
-A INPUT -p ipv6-icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A OUTPUT -p ipv6-icmp -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPU… Continue reading What is the most restrictive way to allow IPv6 ICMP requests on iptables?→