You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
With IPv6 on most networks, clients derive their IPv6 address from the prefix using SLAAC, but it's not stable as it can be changed using one of the following extensions. It would be great if there were client permission rules for MAC addresses. One rule entry would allow ports to be opened for both IPv4 and IPv6.
It's not easy to get the incoming MAC address to match, but such rules would be brilliant.
Indeed it would be great. Anyway I don't think there so much demand about improving the WANIPv6FirewallControl:1 implementation.
I may be wrong, but most user are only interested in IGDv1 WANIPConnection:1 implementation, as that is what is used by MS Windows and game consoles.
With IPv6 on most networks, clients derive their IPv6 address from the prefix using SLAAC, but it's not stable as it can be changed using one of the following extensions. It would be great if there were client permission rules for MAC addresses. One rule entry would allow ports to be opened for both IPv4 and IPv6.
It's not easy to get the incoming MAC address to match, but such rules would be brilliant.
Temporary address extension
https://datatracker.ietf.org/doc/html/rfc8981
Stable privacy / semantically opaque interface identifiers
https://datatracker.ietf.org/doc/html/rfc7217
Currently, if IPv6 is enabled in MiniUPnPd, all clients are allowed to open IPv6 ports.
The text was updated successfully, but these errors were encountered: