IPv6 Archive

I did some work recently assessing how Microsft’s Hypervisor (Hyper-V) addresses (or doesn’t address) some common network security based threats in a multi-tenant public cloud environment. I then set out to test whether there are controls in place to mitigate those threats. I would have liked to compare different Hypervisors and their capabilities, but I have yet to do that comparison. If you’re interested in testing independently, there are several good tools out there including nmap, yersinia, hping and scapy. Those four tools will allow you to test every scenario in this document. Some detail on the test case is provided in each section. First, some basic definitions that I use in this post: TOR switch: Top of rack switch Switch: Generally references the network [&hellip

Read More...

In a previous post, I went through how to enable IPv6 on an SRX facing Comcast’s HSI service. I limited the scope of that post to  IPv6 on the egress interface. This post will be enabling IPv6 on the local LAN. As I mentioned in my first post, this config is not optimized for security. It also currently does not automatically delegate the prefix learned from Comcast’s gateway. These are static configurations that I’ve hard coded currently. It may be necessary to hard code these configurations, it may not – hard coding them was the only way that I was able to get them to work. The first things I did was disable IPv6 tunneling protocols via group policy across my entire domain. As I [&hellip

Read More...

Comcast enabled IPv6 across Washington State during the week of September 20, 2013, so I figured I better try and get it working at home. It took me a good 8 hours of trial and error to get it going – as documentation is a bit sparse and the number of people that have got it working (and post about it)  is also only a few. But, as of 9/29/13, I’m able to access the general IPv6 Internet! I worked at Comcast and worked on IPv6 there, so I had some insight on major deployment decisions and also technical contacts. For example, knowing that Comcast supports DHCPv6 and not SLAAC is important when configuring your gateway. I’ll attach my configurations, but here are a few [&hellip

Read More...


Warning: file_get_contents(/opt/httpd/sites/rickmayberry.com/gpslogger.txt): failed to open stream: No such file or directory in /var/sites/rickmayberry.com/wp-content/plugins/google-maps-widget/google-maps-widget.php on line 150