• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 718
  • Last Modified:

Do we still need DMZ and VPN in IPv6 world

We create DMZ and VPN in IPv4 to protect and to access our internal network. When we are in IPv6, how do we create a DMZ or VPN do we need them?
0
tommym121
Asked:
tommym121
  • 3
2 Solutions
 
QlemoC++ DeveloperCommented:
Strange question. IPv6 does nothing in regard of security or privacy, so yes, we will still need both DMZ and VPN.

A VPN does not only build a tunnel between two peers or networks, the traffic is authenticated and encrypted. Both can be very important parts of the tunnel.

A DMZ isolates a network from another one. The DMZ network usually isn't protected that much, and whenever access to the LAN is necessary, firewalling is asked for, to protect from malicious content.

Further, you can still have your private IPv6 addresses, which are not routable in the Internet - still you will need some kind of NAT for that. The "only" advantage of IPv6 directly visible is that the addresses will not get exhausted for the next decades.
0
 
bevhostCommented:
A DMZ will make your firewall rules a lot simpler.  It's not *required* though.  if you did it with IPv4 you will probably continue to do it with IPv6, unless it was there just because of the IPv4 NAT.

Also NAT in IPv6 is poorly supported and difficult to implement and is generally a bad idea.

The VPN won't add any value unless it has some sort of encryption.

The methods for creating VPN and DMZ are similar in IPv6 and IPv4.

0
 
bevhostCommented:
0
 
tommym121Author Commented:
Thanks
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now