9/22 Securing the Data Plane in IPv6 (CCNA Security 640-554 Exam Cram)

on

9.1 Key Terms

amplification attack = A method of attack that starts with relatively few packets and amplifies its responses (like Smurf or Fraggle attacks).
RS = IPv6 router solicitation request. Used by an IPv6 device to obtain information from an IPv6 router on the local network.
RA = IPv6 router announcement. Used by a router to inform other IPv6 devices about the local network address to which they are connected.
NS = IPv6 neighbor solicitation. Used by an IPv6 speaker to make a request of one or more local IPv6 devices on the same network.
NA = IPv6 neighbor advertisement. Used to communicate information from an IPv6 host to another on the same locally connected network.
Eavesdropping = Any method of listening in on other conversations, whether voice or data (sniffer).
man-in-the-middle attack = A form of eavesdropping where the attacker inserts himself in the middle of a conversation, masquerading as a wireless access point, router, proxy server, or so on.
spoofing = An attack where the source pretends to be another host or user (MAC, IP, email).
EUI-64 = Extended Unique Identifier-64, an IEEE standard for converting a 48-bit MAC address into a 64-bit host address in IPv6 networks. Used for stateless autoconfiguration.

9.2 Things to Remember

9.2.1 Conversion Charts Between Decimal, Binary and Hexadecimal

Decimal = Binary = Hexadecimal
0 = 0000 = 0
1 = 0001 = 1
2 = 0010 = 2
3 = 0011 = 3
4 = 0100 = 4
5 = 0101 = 5
6 = 0110 = 6
7 = 0111 = 7
8 = 1000 = 8
9 = 1001 = 9
10 = 1010 = A
11 = 1011 = B
12 = 1100 = C
13 = 1101 = D
14 = 1110 = E
15 = 1111 = F

9.3 Command References

Command > Description
ipv6 address > Apply an IPv6 address to an interface
ipv6 unicast-routing > Enable the router to forward IPv6 packets on behalf of other devices
ipv6 ospf 1 area 0 > Enable the interface for OSPF process 1, in area 0

9.4 Command Examples

An IPv6 Address Configured the Hard Way
R1 (config-if)# ipv6 address 2001:0db8:0000:0000:1234:000:0052:0001/64
R1 (config-if)# do show ipv6 interface brief

IPv6 Interface Information
R1# show interface fa0/1 | include bia
R1# show ipv6 interface fa0/1

Enabling IPv6 Routing and Routing Protocols
R1 (config)# ipv6 unicast-routing
R1 (config)# int fa 0/1
R1 (config-if)# ipv6 rip MYRIP enable
R1 (config-if)# ipv6 ospf 1 area 0
R1 (config-if)# ipv6 eigrp 1
R1 (config-if)# exit
R1 (config)# ipv6 router eigrp 1
R1 (config-rtr)# no shutdown
R1# show ipv6 protocol


10 Planning a Threat Control Strategy

0 Contents and Introduction

Comments

Post a Comment