FilesWithThreateningAurasAnyone familiar with doing network security on a traditional enterprise network that has adopted #IPv6 Any resources for #networksecurity in an IPv6 world?
_bka_@Iaintshootinmis Happy to help. Methodologies are a bit different since network are larger by magnitudes.
@thc built some nice scripts in the past: https://github.com/vanhauser-thc/thc-ipv6
If you run out of time scanning the subnets in scope, which is likely, you might want to try techniques like IPv6 DNS walk https://github.com/nomis/ip6walk
For Layer2 check link-local address scopes and multicast addresses like ff02::1 or ff02::2.
Generally when it comes to filtering, I recommend to check if they handle #IPv6 and #IPv4 addresses differently in #firewalls. While #iptables is used for IPv4, IPv6 uses #ip6tables.
EscalatedQuickly 
@Iaintshootinmis perhaps not the side of network security you're talking about, but in case it is
I published a research paper on IPv6 recon some years back. While I wouldn't call my own work practically useful, one of the references I found was pretty exhaustive - RFC7707: https://www.rfc-editor.org/rfc/rfc7707