IPv6 Security - Sharkfest
IPv6 Security - Sharkfest IPv6 Security - Sharkfest
Common IPv6 Multicast Groups • IPv6 multicast addresses start with FF. • See some common groups below. • Multicast addresses are registered with the Internet Assigned Numbers Authority (IANA). • For more, see: http://www.iana.org/assignments/ipv6-multicastaddresses/ipv6-multicast-addresses.xml IPv6 multicast address Description --------------------------------------------------------------------------------- FF02::1 The all-nodes address FF02::2 The all-routers address FF02::5 The all-Open Shortest Path First (OSPF) routers address FF02::6 The all-OSPF designated routers address
IPv6 Multicast Scope • Last 4 bits is scope. (Ex. FF01, FF02, etc.) • FF01:: means on same interface • FF02:: means on same link • FF05:: means in the same site • FF0E:: means in the Internet (all reachable). (From RFC 4291)
- Page 1 and 2: 1 IPv6 Security Nalini Elkins, CEO
- Page 3 and 4: • Denial of service - High Usage
- Page 5 and 6: TCP SYN Flood • Malicious client
- Page 7 and 8: Worms • Worms • Example: Slamme
- Page 9 and 10: How has it changed with IPv6? • I
- Page 11 and 12: Reconnaissance IPv4 • Subnet = 2
- Page 13: Reducing the IPv6 Search Space •
- Page 16 and 17: What Else? Some IDS protect against
- Page 18 and 19: ICMPv6 Informational Messages Type
- Page 20 and 21: Router Advertisement Contents Route
- Page 22 and 23: Neighbor Discovery Issues • IPv6
- Page 24 and 25: DoS New IPv6 • Denies new device
- Page 26 and 27: Sample Vulnerabilities
- Page 28 and 29: UTube of FloodRouter6 • IPv6 DOS
- Page 30 and 31: Hacker Tools • Scanners - IPv6 se
- Page 32: IPv6 Extension Headers • New: IPv
- Page 35 and 36: From RFC2460: Option 11: discard th
- Page 38 and 39: Crafted Packet • Crafted IPv6 pac
- Page 42 and 43: DHCPv6 Flow : Start 1. Client sends
- Page 44 and 45: Temporary Addresses • MAC IID
- Page 46 and 47: Temporary Address Guidelines • RA
- Page 48: Summary • What is more secure?
Common <strong>IPv6</strong> Multicast Groups<br />
• <strong>IPv6</strong> multicast addresses start with FF.<br />
• See some common groups below.<br />
• Multicast addresses are registered with the Internet Assigned Numbers<br />
Authority (IANA).<br />
• For more, see: http://www.iana.org/assignments/ipv6-multicastaddresses/ipv6-multicast-addresses.xml<br />
<strong>IPv6</strong> multicast address Description<br />
---------------------------------------------------------------------------------<br />
FF02::1 The all-nodes address<br />
FF02::2 The all-routers address<br />
FF02::5 The all-Open Shortest Path First (OSPF) routers address<br />
FF02::6 The all-OSPF designated routers address