> A home/consumer level IPv6 firewall would look just like a NAT firewall does today. Show me one and I'll happily evaluate it. Until it I actually see one, I'll continue to say that it needs to be invented. :) > My Linksys wireless router has an Advanced tab I'm quite happy with the existence of knobs and levers as long as users don't have to see them in normal use. Unfortunately, on every firewall I've seen so far, blocking inbound traffic without using NAT requires the Advanced tab or at least some pretty advanced knowledge. Picture explaining to a non-technical person how to block all inbound traffic on your Linksys without using NAT. It will probably turn into a networking lesson. Yes, in theory this is an easy problem to solve -- it's just UI. In practice, nobody has solved it yet. > It's a system that tracks connection state (or network "flows") and allows firewall block/allow decisions to be made based on that state. That phrase probably describes 99.9% of the firewalls sold today. That's why I consider it ambiguous.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds