Effectiveness of security tools to anomalies on tunneled traffic
Tunneling mechanism has been proven as an option to link the communication between IPv6 networks and IPv4 environments without incurring the high costs of upgrading equipment. However, this mechanism has reduced the network performance and downgrade the level of security if compared to the native IP...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Asian Network for Scientefic Information
2012
|
| Subjects: | |
| Online Access: | http://eprints.utem.edu.my/id/eprint/15140/1/Effectiveness%20of%20security%20tools%20to%20anomalies%20on%20tunneled%20traffic187.pdf http://eprints.utem.edu.my/id/eprint/15140/ https://docsdrive.com/pdfs/ansinet/itj/2012/191-199.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | Tunneling mechanism has been proven as an option to link the communication between IPv6 networks and IPv4 environments without incurring the high costs of upgrading equipment. However, this mechanism has reduced the network performance and downgrade the level of security if compared to the native IPv6 network. The Transition Mechanism has also become a covert channel for spreading threats without being acknowledged by the network security tools. Even though the issue has been raised in the set of IETF rules,
still they do not provide any recommendation to overcome the problem. Based on this reason, this study
explored the effectiveness of conventional network security tools to detect any anomalies occurring on a
tunneling mechanism especially against packet flooding attack in IPv6 tunneling. In order to achieve this
objective, a testbed that has been deployed with conventional firewall and IDS is used to simulate the IPv6 to IPv4 tunneling mechanism, several network attacks are then launched and the network traffic is then captured
to be analyzed. The result shows that the firewall with the default settings had blocked all the tunneling
packets, while the firewall and IDS with the default rule of set had performed well in IPv4 but not in the IPv6
tunnel. |
|---|