Question about PIX 500 series IOS version 7.x firewall access-lists.
I work for a school district with over 8000 users. I am starting to see a pattern of staff and students using 6to4 (IPv6 to IPv4) tunneling to bypass our content filtering systems.
I am trying to find out if I can implement an access list to drop IPv4 packets with a IPv6 tunnel payload?
I have run packet captures looking for protocol 41 (IPv6) with none found. The packets are being tunneled at the PC level (Windows XP) using 6to4 and Microsoft Tereno tunneling.
Any input or ideas would be greatly appreciated!
Thanks in advance. Curtis