Windows Server 2008R2 AD Domain controller - enable or disable ipv6 protocol

Posted on 2011-10-10
Last Modified: 2012-06-22
We are in the process of upgrading our Active Directory from W2K3 to W2K8; we have about 25 domain controllers (all W2K3) running now and will upgrade them all to W2K8 in the coming months. We have two consultants giving us different advice on whether or not to keep the ipv6 protocol enabled on the new W2K8 domain controllers. One says "first thing to do is disable ipv6", the other one says "keep ipv6 enabled always"... Our network is not fully configured for ipv6 yet, but we can ping servers using ipv6 and we have seen that we could access ipv6 enabled servers when we were having local tail packet size problems to one of our subsidiaries.

Cqn someone share some info whether or not we should enable / disable ipv6 on domain controllers?
Question by:bemsofpe
    LVL 9

    Expert Comment

    On my WAN I have disabled IPV6 on *all* 2008 servers until we are ready to make the transition. Better safe than sorry since you have no plans to use it in the near future. Once you're ready to make the transition and have all your IPV6 routing setup and tested, you could start enabling it.
    LVL 39

    Accepted Solution

    I would suggest to leave IPv6 enabled. As I also disabling it in the past, after I read this article "Why do not disable IPv6", I stopped doing that :) Actually, Win 2008 R2 has many services which relies on IPv6 in the background, so leave it (DirectAccess, Exchange 2010 etc.).

    Read this article, please and check if it convinced you :)

    LVL 17

    Assisted Solution

    by:Sikhumbuzo Ntsada
    Here is why I would motivate for IPv6 to be enabled:

    - We are inevitable running out of IP addresses in IPv4 (Outside internet I know not a problem if there is no WANs in your Forest)

    •      IPv6 has better security (IPSec)
    •      Plug n’ Play capabilities have been improved
    •      QoS improved – has an additional flow label header
    •      IP mobility has been simplified because, unline IPv4, one can rely on a communication partner’s address to be visible throughout the internet.

    Featured Post

    Highfive + Dolby Voice = No More Audio Complaints!

    Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

    Join & Write a Comment

    Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
    Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
    This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
    This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now