RFC 9099

Operational Security Considerations for IPv6 Networks, August 2021

File formats:

icon for HTML icon for text file icon for v3pdf icon for XML
Status:
INFORMATIONAL
Authors:
É. Vyncke
K. Chittimaneni
M. Kaeo
E. Rey
Stream:
IETF
Source:
opsec (ops)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC9099

Discuss this RFC: Send questions or comments to opsec@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

Knowledge and experience on how to operate IPv4 networks securely is available, whether the operator is an Internet Service Provider (ISP) or an enterprise internal network. However, IPv6 presents some new security challenges. RFC 4942 describes security issues in the protocol, but network managers also need a more practical, operations-minded document to enumerate advantages and/or disadvantages of certain choices.

This document analyzes the operational security issues associated with several types of networks and proposes technical and procedural mitigation techniques. This document is only applicable to managed networks, such as enterprise networks, service provider networks, or managed residential networks.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.