[mirimir]

So IPv6 firewall rules are common now for consumer routers?

[Symbiote]

Yes.

My mum's boring broadband connection, with a free router supplied by the ISP in the UK, has the functionality next to the port forwarding settings for IPv4.

That's typical. Look up IPv6 pinhole to see how ISPs document it.

[mirimir]

OK, so I suspect that it varies greatly among markets.

But I wonder, is it a fair assumption that the router that you get will either 1) not route IPv6 at all, or 2) route IPv6, and by default deny incoming traffic? Problematic would be ones that routed IPv6, and by default accepted incoming traffic.

[Spivak]

First, nothing is common for consumer IPv6 routers, they're practically non-existent.

Second, you get the same security benefits by having a firewall that denies outbound connections not already established.

[sparewalking]

I bought an IPv6 router 3-4 years ago.

[voltagex_]

Most people don't buy routers, they are given them by their ISPs. My parents switched ISP at the start of the year and were given a 5 year old modem/router.

[Spivak]

You're also on Hacker News. They have been available for a long time, but they're firmly a techie/early adopter product.

[Symbiote]

In many countries the ISP supplies the router. I've had IPv6 capable routers for years and years in Britain, but it's only in the last 2 years or so that the IPv6 address has been assigned by the ISP.