Department of Defense
High Performance Computing Modernization Program

Firewall configuration guidance for specific manufacturers and specific open source software may be found in the Security section of the IPv6 Knowledge Base. For commercial products, the manufacturer’s website provides guidance. For open source software, the developer’s website provides guidance.

While not specific to any one manufacturer, this article in NetworkWorld on The Future of Firewall Policies by Scott Hogg discusses what to expect when firewall configurations are protecting a dual-protocol environment.

These two publications are good general references on things to do (and to avoid) when configuring firewalls. Though a little dated, they are still valuable references:

The National Institute of Standards and Technology (NIST) published SP800-41 Rev. 1, Guidelines on Firewalls and Firewall Policies, offering security principles and guidance for configuration of firewalls (IP agnostic guidelines with limited guidance specifically for IPv6). Other NIST Special Publications (SP) on security are publicly available here.

The National Security Agency (NSA) Systems and Network Attack Center (SNAC) published Firewall Design Considerations for IPv6 offering design and security guidance to protect IPv6 networks. Other NSA Security Configuration Guides are available here (hover over the word "LIBRARY" in the row of keywords at the top of the screen to see other available subject areas). Older NSA Security Configuratioin Guides are archived here .


Top