Bypassing ACL using extension headers

Matej Gregr — Wed, 06 Nov 2013 14:34:01 +0000

The video demonstrates how to bypass an access control list on HP A5800 switch using IPv6 and extension headers. The attacker uses kernel modul which adds empty destination-options headers to the whole TCP session, thus is able to connect to any service on the server.

The video is temporarily removed on request from the HP Security team.

About the main author

Matej Gregr

PhD student at Brno University of Technology. He teaches network related courses and his research concerns IPv6 security, monitoring and deployment. He works also as a network administrator at Brno campus network and participates in the European project - GÉAN3 Campus Best Practice.

Fake router detection – practical experience

Matej Gregr — Mon, 11 Apr 2011 16:33:20 +0000

6to4 (RFC 3056) is a transition mechanism allowing users to communicate with IPv6 enabled sites and services with minimal manual configuration. Globally unique IPv4 address is the only prerequisite. Together with anycast prefix for 6to4 routers (defined in RFC 3068) provides a simple solution, how even an end site can obtain IPv6 connectivity. The mechanism is implemented in all major operation systems. The presentation is focused on problems in local area networks caused by 6to4 implementation in Windows Vista/7. Several monitoring tools are presented, unfortunately, the tools can protect a network only againts missconfigured hosts. The only proper solution is filtering malicious traffic on all access ports. However, the implementation is still not available on most networking equipment.

6lab.cz | RSS Feed

Bypassing ACL using extension headers

About the main author

Matej Gregr

Fake router detection – practical experience

About the Author

Matej Gregr