ICMPv6, like IPv4, sends a Time Exceeded message if the router cannot forward an IPv6 packet because the packet has expired. However, the IPv6 packet does not have a TTL field. Instead, it uses the Hop Limit field to determine if the packet has expired.

An access attack tries to gain access to a resource using a hijacked account or other means. The five types of access attacks include the following:

1) Password – a dictionary is used for repeated login attempts

2) Trust exploitation – uses granted privileges to access unauthorized material

3) Port redirection – uses a compromised internal host to pass traffic through a firewall

4) Man-in-the-middle – an unauthorized device positioned between two legitimate devices in order to redirect or capture traffic

5) Buffer overflow – too much data sent to a memory location that already contains data

The value of the Time-to-Live (TTL) field in the IPv4 header is used to limit the lifetime of a packet. The sending host sets the initial TTL value; which is decreased by one each time the packet is processed by a router. If the TTL field decrements to zero, the router discards the packet and sends an Internet Control Message Protocol (ICMP) Time Exceeded message to the source IP address.

The Differentiated Services (DS) field is used to determine the priority of each packet.

Sequence Number and Acknowledgment Number are two fields in the TCP header.

Network reconnaissance attacks involve the unauthorized discovery and mapping of the network and network systems.

Access attacks and trust exploitation involve unauthorized manipulation of data, access to systems or user privileges.

DoS, or Denial of Service attacks, are intended to prevent legitimate users and devices from accessing network resources.

In a TCP SYN flood attack, the attacker sends to the target host a continuous flood of TCP SYN session requests with a spoofed source IP address.

The target host responds with a TCP-SYN-ACK to each of the SYN session requests and waits for a TCP ACK that will never arrive.

Eventually the target is overwhelmed with half-open TCP connections.

IPv6 uses extension headers to carry optional network layer information.

Extension headers are not part of the main IPv6 header but are separate headers placed between the IPv6 header and the payload.