I know that IPv6 mandates certain security requirements better than IPv4 did, but:
Today we use NAT in home routers which passively acts as a firewall for ports that are not specifically open/forwarded on the router. As ISPs move to IPv6 and more and more users just use ISP provided modem, there is no more need for NAT at the modem interface. So, I could potentially see the ISP modem essentially assign public IPs to all attached devices.
Wouldn't that open up allot of currently hidden ports and holes?
In today's setup my scanner connects to my PC and drops a scanned PDF file via my local network. But if my computer were to now have a public IP, because modem can assign it one since NAT is no longer needed, a Lin Wing Chung from China could potentially connect to that same port and drop a virus in, in place of PDF that my scanner would drop...
This is a theoretical question that deals with dangers introduced by depreciation of NAT.
I realize that end user can still run a local router (hardware firewall) and protect himself. I am thinking for Mom's and Pop's who just plug the hardware in and don't know any better... There are many devices in existence today who's level of security was never intended for direct connection to the internet and lack of need for NAT opens up a possibility of connecting these devices to the internet without end user ever realizing how bad it is.
Today we use NAT in home routers which passively acts as a firewall for ports that are not specifically open/forwarded on the router. As ISPs move to IPv6 and more and more users just use ISP provided modem, there is no more need for NAT at the modem interface. So, I could potentially see the ISP modem essentially assign public IPs to all attached devices.
Wouldn't that open up allot of currently hidden ports and holes?
In today's setup my scanner connects to my PC and drops a scanned PDF file via my local network. But if my computer were to now have a public IP, because modem can assign it one since NAT is no longer needed, a Lin Wing Chung from China could potentially connect to that same port and drop a virus in, in place of PDF that my scanner would drop...
This is a theoretical question that deals with dangers introduced by depreciation of NAT.
I realize that end user can still run a local router (hardware firewall) and protect himself. I am thinking for Mom's and Pop's who just plug the hardware in and don't know any better... There are many devices in existence today who's level of security was never intended for direct connection to the internet and lack of need for NAT opens up a possibility of connecting these devices to the internet without end user ever realizing how bad it is.