1,721,031 research outputs found
RFC 5157: IPv6 Implications for Network Scanning
No full textThe much larger default 64-bit subnet address space of IPv6 should in principle make traditional network (port) scanning techniques used by certain network worms or scanning tools less effective. While traditional network scanning probes (whether by individuals or automated via network worms) may become less common, administrators should be aware that attackers may use other techniques to discover IPv6 addresses on a target network, and thus they should also be aware of measures that are available to mitigate them. This informational document discusses approaches that administrators could take when planning their site address allocation and management strategies as part of a defence-in-depth approach to network security
Visualising roaming within eduroam
No full textThe eduroam federated access service is a valuable tool for supporting collaboration and resource sharing worldwide, with its primary purpose being to facilitate seamless wireless roaming between users at participating institutions. There are over 100 participating sites in the UK that have joined the UK instance of eduroam known as the JANET Roaming Service (JRS). However, while the JRS is gaining traction in deployment, there is a lack of visualisation tools for users, site administrators or JANET managers to understand and see the general roaming patterns. This paper will describe the implementation of and demonstrate a number of three-dimensional, interactive visual representations of eduroam log data from the JRS. These visualisations give a comprehensive overview of JRS roaming in the UK that, for example, communicate the ‘value’ of the service in a single image [Figure 1], give overviews at the institutional level [Figure 2] and provide diagnostic information to the service operators [Figure 3]. The software is open source and is being developed with a view to it being offered for adoption by other NRENS and the international core eduroam infrastructur
RFC 6104: rogue IPv6 Router Advertisement problem statement
No full textWhen deploying IPv6, whether IPv6-only or dual-stack, routers are configured to send IPv6 Router Advertisements (RAs) to convey information to nodes that enable them to autoconfigure on the network. This information includes the implied default router address taken from the observed source address of the RA message, as well as on-link prefix information. However, unintended misconfigurations by users or administrators, or possibly malicious attacks on the network, may lead to bogus RAs being present, which in turn can cause operational problems for hosts on the network. In this document, we summarise the scenarios in which rogue RAs may be observed and present a list of possible solutions to the problem. We focus on the unintended causes of rogue RAs in the text. The goal of this text is to be Informational, and as such to present a framework around which solutions can be proposed and discussed
- …
