[Info-vax] implementing IPv6 on the internet

Stephen Hoffman seaohveh at hoffmanlabs.invalid
Wed Sep 21 13:32:39 EDT 2016


On 2016-09-21 15:56:06 +0000, Richard Levitte said:

> Den onsdag 21 september 2016 kl. 14:28:20 UTC+2 skrev Dirk Munk:
>> 
>> No real difference.
> 
> Except you're into a world of complication of you want to open up port 
> 22 to every device at home...  Ah-yup, let the fun begin.

There's little difference.  If you port-forward TCP port 22 with IPv4, 
you get poked at.   If you open TCP port 22 with IPv6, you get poked 
once your IP address is known.   The port forwarding and NAT mess 
becomes a simpler set of manual and automatic rules configurable in 
your firewall for source and destinations, for the folks that want or 
need that control.    As for finding the target IP addresses, the 
sparseness of the address space makes it far more difficult to massscan 
all of IPv6 than IPv4.    (The massscan tool can run through all of the 
active IPv4 address space in a few minutes, or use Shodan, etc)    But 
open ports on known IP addresses will get probed, whether on IPv4 or on 
IPv6.



-- 
Pure Personal Opinion | HoffmanLabs LLC 




More information about the Info-vax mailing list