• Illecors@lemmy.cafe
    link
    fedilink
    English
    arrow-up
    1
    ·
    8 days ago

    IPv6. My stupid ISP actually shipped their router with all inbound ipv6 blocked with no way to unblock it, so I set up opnsense. Works like a charm!

      • Illecors@lemmy.cafe
        link
        fedilink
        English
        arrow-up
        1
        ·
        8 days ago

        It’s not v6 itself, it’s rather lack of layers of nat that prevent forwarding a v4 for most folks.

        • clove@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          0
          ·
          edit-2
          8 days ago

          Hmm, so no firewall in the router blocking ports, instead blocking happens on the actual client?

          • azuth@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            1
            ·
            edit-2
            7 days ago

            Port forwarding is necessary due to NAT not firewalls.

            It’s not that your router blocks new incoming connections at port X, it’s that it does not know which local client it’s meant for, since it’s addressed to the public IP that is held by your router.

            With IP6 it’s lan client also gets assigned a public IP6 address (as there are plenty) and so the router receives a connection addressed to a Lan client and knows where to route it.

      • Illecors@lemmy.cafe
        link
        fedilink
        English
        arrow-up
        1
        ·
        8 days ago

        It doesn’t fix it, per se, rather removes the need for layers of hacks such as nat and cg-nat. Every device gets a globally routable IP - no need to forward anything, just open the port you want.