[Info-vax] implementing IPv6 on the internet
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Wed Sep 21 13:32:39 EDT 2016
On 2016-09-21 15:56:06 +0000, Richard Levitte said:
> Den onsdag 21 september 2016 kl. 14:28:20 UTC+2 skrev Dirk Munk:
>>
>> No real difference.
>
> Except you're into a world of complication of you want to open up port
> 22 to every device at home... Ah-yup, let the fun begin.
There's little difference. If you port-forward TCP port 22 with IPv4,
you get poked at. If you open TCP port 22 with IPv6, you get poked
once your IP address is known. The port forwarding and NAT mess
becomes a simpler set of manual and automatic rules configurable in
your firewall for source and destinations, for the folks that want or
need that control. As for finding the target IP addresses, the
sparseness of the address space makes it far more difficult to massscan
all of IPv6 than IPv4. (The massscan tool can run through all of the
active IPv4 address space in a few minutes, or use Shodan, etc) But
open ports on known IP addresses will get probed, whether on IPv4 or on
IPv6.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list