nanog mailing list archives

Re: Consumer Grade - IPV6 Enabled Router Firewalls.

From: Chris Adams <cmadams () hiwaay net>
Date: Thu, 10 Dec 2009 22:08:49 -0600

Once upon a time, Owen DeLong <owen () delong com> said:

UPnP is a bad idea that (fortunately) doesn't apply to IPv6 anyway.

You don't need UPnP if you'r not doing NAT.


You need UPnP for a stateful firewall, whether it is mangling packets
with NAT or not.  I have an Xbox 360 behind an SSG-5 with no NAT, and I
can't play some on-line games unless I open up the Xbox IP in the SSG.

You can debate whether UPnP is the correct solution, but some solution
is needed (even with IPv6) as long as stateful firewalls exist.
-- 
Chris Adams <cmadams () hiwaay net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

Current thread:

Re: Consumer Grade - IPV6 Enabled Router Firewalls., (continued)
- - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Randy Bush (Dec 02)
- Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mehmet Akcin (Dec 02)
  - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 02)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Jorge Amodio (Dec 02)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mehmet Akcin (Dec 02)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Chris Adams (Dec 02)
  - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Bill Fehring (Dec 02)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Seth Mattinen (Dec 02)
  - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Michael Loftis (Dec 10)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Owen DeLong (Dec 10)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Chris Adams (Dec 10)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Valdis . Kletnieks (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 12)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Joe Greco (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mikael Abrahamsson (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)

(Thread continues...)