How to avoid security issues with VPN leaks on dual-stack networks

Fernando Gont fernando at
Thu Jan 24 11:10:55 UTC 2013


Thought you might be interested...

Techtarget has just published an article I've authored for them,
entitled "How to avoid security issues with VPN leaks on dual-stack

The article is available at:

(Note: There are some banners (?) intermixed... but the whole article
can be viewed without registration... just keep scrolling down!)

Its "Abstract" is:
---- cut here ----
The imminent exhaustion of freely available IPv4 addresses has, over a
number of years, led to the incorporation of IPv6 support by most
general-purpose operating systems. However, many applications, such as
VPN client and server software, have been lagging behind to become
IPv6-ready. This results in scenarios in which dual-stacked hosts employ
IPv6-unaware VPN software, thus opening the door to security
vulnerabilities, such as VPN traffic leaks. In this tip, we'll discuss
how these VPN security issues arise and the various mitigation options
available for containing VPN traffic leaks.
---- cut here ----

P.S.: Any comments will be welcome.


Best regards,
Fernando Gont
SI6 Networks
e-mail: fgont at
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492

Fernando Gont
e-mail: fernando at || fgont at
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

More information about the NANOG mailing list