Default security functions on an IPv6 CPE
spz at serpens.de
Sat May 7 13:50:08 CEST 2011
Thus wrote Mikael Abrahamsson (swmike at swm.pp.se):
> On Fri, 6 May 2011, Cameron Byrne wrote:
> >This also keeps us locked into tcp/udp and breaks sctp and other
> >forward looking evolutions of ip transport ... also likely broken
> >are multicast, ipsec, mobile ip, ...
> Nono, my suggestion is to statefully block incoming connections to
> low tcp/udp ports but allow everything else IPv6.
udp port 500, IKE?
spz at serpens.de (S.P.Zeidler)
More information about the ipv6-ops