Let’s face it. You introduce security risks to your network any time you deploy a technology that you don’t understand. One of the best examples of this fact is IPv6. Not many people understand IPv6 very well, and all the security implications of IPv6 haven’t been worked out. That will happen sometime when IPv6 is under widespread adoption (probably sometime in the 22rd century).
Until then, you need a way to turn off IPv6 on your clients and servers. IPv6 is enabled by default on Windows Vista and Windows Server 2008. If you’re not using it, you should turn it off. You can turn it off by editing the Registry. Look for the key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\
When you get there, create a DWORD value named DisabledComponents and set the value to 0xffffffff
If you decide later to implement IPv6, just set that value to 0
HTH,
Tom
Thomas W Shinder, M.D.
Site: http://www.isaserver.org/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW BOOK! Go to http://tinyurl.com/2gpoo8
Email: [email protected]
MVP – Microsoft Firewalls (ISA)