[120161] in North American Network Operators' Group
Re: Consumer Grade - IPV6 Enabled Router Firewalls.
daemon@ATHENA.MIT.EDU (Mark Newton)
Fri Dec 11 03:10:28 2009
From: Mark Newton <newton@internode.com.au>
In-Reply-To: <9F752F9C-8A43-4467-95A7-A1907E3BFF91@delong.com>
Date: Fri, 11 Dec 2009 18:39:36 +1030
To: Owen DeLong <owen@delong.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 11/12/2009, at 1:14 PM, Owen DeLong wrote:
>
> You don't need UPnP if you'r not doing NAT.
You kinda do if you're using a stateful firewall with a "deny
everything that shouldn't be accepted" policy. UPnP (or something
like it) would have to tell the firewall what should be accepted.
- mark
--
Mark Newton Email: newton@internode.com.au (W)
Network Engineer Email: newton@atdot.dotat.org (H)
Internode Pty Ltd Desk: +61-8-82282999
"Network Man" - Anagram of "Mark Newton" Mobile: +61-416-202-223
