IPv6 Security
IPv6 Security
IPv6 Security
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
IOS firewalls523inspect statistics command, IOS firewalls, 156inspecting traffic. See filtering; firewallsintegrity of communications, 319. See also MD5interfacesAUX, passwords for, 225configured tunnel properties, 423disabling routing services on, 235hardening, 223-224loopback, 233-235management network, 234-235monitoring, 468-469Null 0, 234OSPFv3, 250passive-interface command, 240remote, viewing, 365-367show ipv6 interface command, 177interior gateway protocols (IGPs), 106interior routing protocol threats. See routingprotocolsIntermediate System-to-Intermediate System.See IS-ISInternet Connection Sharing (ICS), 461Internet Control Message Protocol. See ICMPv6Internet Engineering Task Force (IETF), 3Internet Key Exchange. See IKEInternet Protocol (IP) hourglass, 499Internet Routing Protocol Attack Suite (IRPAS),257Internet Routing Registries (IRRs), 90Intra-Site Automatic Tunnel Addressing Protocol.See ISATAPIOS, Cisco6in4 tunnel configuration, 421ACLs. See IOS ACLsfirewalls. See IOS firewallsimage verification, 221-222ISATAP configuration, 430Safe Harbor testing, 221SEND CGA configuration, 198version selection, 220-222IOS ACLsclear command, 139CoPP/CPPr conflicts, 142debug command, 149explicit denies, 143extended ACLs, 139extension header example, 28-29firewall configuration example, 154firewalls, configuring for, 150-153ICMP with, 139implicit neighbor discovery, 142implicit rules, 142-143Internet ACL example, 143-147logging, 140named access list style, 138NDP for MAC mapping, 142PMTUD requirement, 143processor burden from, 139purpose of, 138reflexive, 147-149show command, 139standard <strong>IPv6</strong> ACLs, 138stateless nature of, 147switches with, 139syntax for, 138-139TCP with, 139traffic-filter commands, 147UDP with, 139undetermined-transport keyword, 52-54uploading with SCP, 140, 142IOS firewallsaudit trail inspection, 153-155authentication proxy with, 158CBAC, 149-153configuration example, 153-157configuring, 150-153counters, clearing, 156counters, viewing, 155CPU utilization, 150debug options, 157defining inspection policies, 150DoS attack monitoring, 150-152hash table size extension, 158high water mark settings, 152IDS with, 158inspect statistics command, 156inspectable types of packets, 151<strong>IPv6</strong> support, first version with, 149Port-to-Application, 157-158routing header inspection, 151sessions, removing, 156show command, 154stateful features, 149TCP connection settings, 151
Change language