Reply to post: IPv6 consumer devices are a dumpster fire

It's begun: 'First' IPv6 denial-of-service attack puts IT bods on notice

Kevin McMurtrie Silver badge

IPv6 consumer devices are a dumpster fire

ISPs and IoT makers have set the stage for huge IPv6 DDoS attacks that could take years to fix once they've started. Half of IPv6 devices have zero security and half of them are WAN hardened for peer-to-peer connectivity. Routers from ISPs make that difficult or impossible to manage. At best, they require you to create custom firewall rules for inbound IPv6. No doubt the most popular solution is going to be the wildcard-to-wildcard ALLOW rule that non-technical people can copy & paste. At worst they have one big "on/off" switch and it needs to be "on" anyways because the firewall is buggy. This mess has been building up for years and it won't get fixed anytime soon.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019