Thanks for your view (and apologies for taking this further off topic)
I don't necessarily agree that IPv6 has poorer security, just different issues to IPv4 - the main problem lies in where IPv6 is just turned on without proper configuration. I do accept that enabling both protocols does expose a higher risk given the code behind each is different and therefore they have different vulnerabilities.
I took the decision to adopt IPv6 to be future-ready but as some devices, ISPs and even some household-name cloud infra providers are lagging behind on its adoption, I want to offer both until I can eventually turn off IPv4.
My internet gateway has separate firewall rules for IPv4 and IPv6, so only the devices and ports I choose are accessible from the Internet.
|