VISTA: IPv6 Teredo tunneling exposure

By jobeard
Mar 11, 2008
  1. Teredo, developed by Microsoft, is included in Windows Vista and let's you tunnel IPv6 traffic over IPv4.
    Before you jump right into using it some examination of the security implications might be wise.

    Jim Hoagland over at Symantec has some help for you in the form of a paper that looks into the security implications.
    In particular Hoagland points out that a major security concern of Teredo is "the
    bypassing of network security devices, such as firewalls and IDS / IPS. Unless those
    are specifically Teredo-aware, they will not see the IPv6 traffic as IPv6 traffic, but
    merely as UDP traffic on unknown ports and thus will miss the real traffic on which to
    apply security controls.

    Thus, Teredo being enabled introduces a security risk to your network."
Topic Status:
Not open for further replies.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...