I suspect the answer at the moment is that there is no answer. AFAIK IPv6 isn't really ready to auto-magically open firewalls, This is generally something you you would only want to happen for consumers. and not any business/enterprise network.
When the IPv6 has gotten enough traction that broadband-router vendors are seriously looking at supporting IPv6 on consumer routers then they will probably come up with something. Like NAT-PMP, and IGD, we will most likely see something for this from a vendor first. Neither of those are standardized. I am not a protocol/firewall developer at all but if you will allow me to wildly speculate. Given how huge the IPv6 address space is, I think one method that could be used here is to have P2P applications generate a new unique address, bind to that address, and then instruct the user to open the firewall for any connections too/from that address. It seems like it would be easier to just have a unique address per application over doing anything weird per-port or port range. If you could simply open a single address it seems like it would be very easy for a firewall vendor to come up with an agent or API that would allow desktop computers to request a specific address be completely opened. Chris On Wed, Mar 30, 2011 at 3:07 PM, Edward Ned Harvey <lop...@nedharvey.com> wrote: > Therefore, p2p in general is broken. Unless.... > > Unless there is a protocol or solution of some sort, that allows internal > devices to reconfigure the perimeter firewall to allow the inbound traffic. > ... What's the solution for IPv6? _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
