Do we still need DMZ and VPN in IPv6 world

We create DMZ and VPN in IPv4 to protect and to access our internal network. When we are in IPv6, how do we create a DMZ or VPN do we need them?
tommym121Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
QlemoConnect With a Mentor Batchelor, Developer and EE Topic AdvisorCommented:
Strange question. IPv6 does nothing in regard of security or privacy, so yes, we will still need both DMZ and VPN.

A VPN does not only build a tunnel between two peers or networks, the traffic is authenticated and encrypted. Both can be very important parts of the tunnel.

A DMZ isolates a network from another one. The DMZ network usually isn't protected that much, and whenever access to the LAN is necessary, firewalling is asked for, to protect from malicious content.

Further, you can still have your private IPv6 addresses, which are not routable in the Internet - still you will need some kind of NAT for that. The "only" advantage of IPv6 directly visible is that the addresses will not get exhausted for the next decades.
0
 
bevhostConnect With a Mentor Commented:
A DMZ will make your firewall rules a lot simpler.  It's not *required* though.  if you did it with IPv4 you will probably continue to do it with IPv6, unless it was there just because of the IPv4 NAT.

Also NAT in IPv6 is poorly supported and difficult to implement and is generally a bad idea.

The VPN won't add any value unless it has some sort of encryption.

The methods for creating VPN and DMZ are similar in IPv6 and IPv4.

0
 
bevhostCommented:
0
 
tommym121Author Commented:
Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.