> A home/consumer level IPv6 firewall would look just like a NAT firewall does today.
Show me one and I'll happily evaluate it. Until it I actually see one, I'll continue to say
that it needs to be invented. :)
> My Linksys wireless router has an Advanced tab
I'm quite happy with the existence of knobs and levers as long as users don't have to see them
in normal use. Unfortunately, on every firewall I've seen so far, blocking inbound traffic
without using NAT requires the Advanced tab or at least some pretty advanced knowledge.
Picture explaining to a non-technical person how to block all inbound traffic on your Linksys
without using NAT. It will probably turn into a networking lesson. Yes, in theory this is an
easy problem to solve -- it's just UI. In practice, nobody has solved it yet.
> It's a system that tracks connection state (or network "flows") and allows firewall
block/allow decisions to be made based on that state.
That phrase probably describes 99.9% of the firewalls sold today. That's why I consider it