具有第一跳安全性的本地 IPv6 安全性.pdf

《具有第一跳安全性的本地 IPv6 安全性.pdf》由会员分享，可在线阅读，更多相关《具有第一跳安全性的本地 IPv6 安全性.pdf（65页珍藏版）》请在三个皮匠报告上搜索。

1、#CiscoLive#CiscoLiveric Vyncke,Distinguished EngineerevynckeBRKENT-3002IPv6 Security in the IPv6 Security in the Local Area with First Local Area with First Hop Security(FHS)Hop Security(FHS)2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSession Objectives(from the Abstra

2、ct)A big difference in the security between IPv4 and IPv6 is all the layer-2/layer-3 interactions as DHCP is optional in IPv6 and ARP is replaced by Neighbour Discovery Protocol(NDP).Legacy IPv4 attacks such as ARP spoofing have their equivalent in IPv6.Cisco has developed for many years techniques

3、to secure this interaction in the local area(being WLAN,LAN,SD-Access,Meraki,ACI,etc).This session explains what are the attacks and how Cisco can protect your networks.BRKENT-30024 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex A

4、pp Questions?Use Cisco Webex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until

5、June 9,2023.12346https:/ 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKENT-30026#CiscoLive 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicAgendaSecuring StateLess Address Auto-Configuration(SLAAC)Integrity of Addresses BindingsAddress AvailabilityMore Informat

6、ion on First Hop Security(FHS)FHS in a SD-Access FabricIPv6 Security Beyond Local AreaSummaryKnowledge of IPv6,NDP,fragmentation,network security is assumed BRKENT-30027Securing StateLessAddress Auto-Configuration(SLAAC)2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveState