Jim Flanagan wrote:
OK, but what about something like we have now where we have one or more internal computers or devices connected to and protected from outside by our router, but that does have access to the internet for email, browsing, patching, upgrading etc.? Basically a firewall that protects internal computers, and even prevents them from being known or exposed to the internet? How will this be handled by IPv6?
If a device needs to access the internet, it'll need a public address. Hiding behind NAT does nothing that a properly configured firewall can't do. You'd configure the firewall to allow access only to what you want to be available and block everything else, just like with IPv4. Also, NAT breaks a lot of things. BTW, my firewall and some commercial firewall/routers runs Linux. My firewall is configured only to allow specific services, such as SSH, VPN and IMAPS. With NAT on IPv4, I forward to the appropriate computer behind the firewall, with IPv6, you'd simply allow that specific address & port combination. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org