IPv6 Security Issues and How to mitigate it?
One of the major Problem with IPv6 is ICMPv6 message is Respond to undefine ICMPv6 packet type message and other message type which send ICMPv6 Parameter problem or other response. This can cause DDOS or DOS attack.
ICMPv6 Message Types as below which are not allocated which should blocked to prevent DOS attack.
Error Type: 5-99, 102-126
Information Type: 155-119, 202-254
Experimental Type: 100,101,200,201
Extension Type: 127,255
Problem is mulformed Packets are respond with ICMPv6 Parameter Problem.
Some Operating System Like Linux drops such packets in kernel itself.
Block all multicast address as source, because multicast address can not be source address ever.
Below book on IPv6 Security to learn more
IT Consulting & IT Training 
Leave a comment