[120238] in North American Network Operators' Group
Re: Consumer Grade - IPV6 Enabled Router Firewalls.
daemon@ATHENA.MIT.EDU (Rubens Kuhl)
Sat Dec 12 13:48:46 2009
In-Reply-To: <CEAA01A4-D9A3-4D8F-8159-5A0B3C16A598@internode.com.au>
Date: Sat, 12 Dec 2009 16:48:05 -0200
From: Rubens Kuhl <rubensk@gmail.com>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> I challenge the usual suspects to deliver actual working dual stack IPv6 =
ADSL CPE rather than feigning interest. =A0 None of the major CPE vendors a=
ppear to have a v6 plan despite your claims. =A0 We have an IPv6 dual stack=
trial for ADSL going on and not a single CPE from the _major consumer CPE =
vendors_.
I've saw some ADSL CPEs that could bridge specific frame types. It
would be feasible to think of an ADSL CPE that would simply bridge
IPv4/ARP and IPv6 ethertypes and have a dual-stack BRAS service the
users, or bridge IPv4/ARP to a VC(Virtual Circuit) and IPv6 to another
VC, or NAT+Route IPv4 to a VC and bridge IPv6 to other VC.
In an IPv6 world where NAT is not a requirement (paranoids are welcome
to buy their own IPv6 firewalls), bridging with some L4 intelligence
might be all that a CPE needs to do. The IPv6 idea of letting
end-nodes have more work and intermediate nodes have less work also
applies to CPEs.
Rubens
