nanog mailing list archives

Re: Consumer Grade - IPV6 Enabled Router Firewalls.

From: Chris Adams <cmadams () hiwaay net>
Date: Fri, 11 Dec 2009 08:10:57 -0600

Once upon a time, Joe Greco <jgreco () ns sol net> said:

Everyone knows a NAT gateway isn't really a firewall, except more or less
accidentally.  There's no good way to provide a hardware firewall in an
average residential environment that is not a disaster waiting to happen.


I don't think hardware vs. software makes a "real" firewall.  A NAT
gateway has to have all the basic functionality of a stateful firewall,
plus packet mangling.  Typical home NAT gateways don't have all the
configurability of an SSG or such, but the same basic functionality is
there.

-- 
Chris Adams <cmadams () hiwaay net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

Current thread:

Re: Consumer Grade - IPV6 Enabled Router Firewalls., (continued)
- - - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Valdis . Kletnieks (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 12)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Joe Greco (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Simon Perreault (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mikael Abrahamsson (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mark Newton (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Chris Adams (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Joe Greco (Dec 11)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Joel Jaeggli (Dec 13)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Michael Loftis (Dec 13)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Owen DeLong (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Owen DeLong (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. gordon b slater (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Chris Adams (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Mohacsi Janos (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Joel Jaeggli (Dec 14)
    - Re: Consumer Grade - IPV6 Enabled Router Firewalls. Steven Bellovin (Dec 14)

(Thread continues...)