Every router I’ve ever used has blocked incoming connections on v6 exactly the same as on v4. Really the only difference is you can have multiple devices on your network allowed to receive on the same port if you want.

▲

freetime2 2 hours ago | parent | next [-]

> Every router I’ve ever used has blocked incoming connections on v6 exactly the same as on v4.

A few years back my ISP didn't properly support prefix delegation, and the only way to get IPv6 to work was in "Passthrough" mode. My router (Asus ax86u) was really unclear about what passthrough mode meant, but I think that it might also disable the IPv6 firewall (I have read conflicting reports, and was never able to find an authoritative answer). The setting is buried pretty deep in the router and off by default, so I don't think most people would enable it by accident, but a quick google search does show lots of people on forums enabling Passthrough mode to get IPv6 working. So seems pretty dangerous and there is no warning or anything [1] that you are potentially exposing every device on your network to the internet (if that is indeed what it does).

Fortunately, my ISP has since implemented proper support for prefix delegation.

[1] https://www.asus.com/support/faq/113990/

	▲	simoncion an hour ago \| parent [-]
		I got curious about what "passthrough" might be doing and found this assertion [0], which reminded me of the existence of '6relayd' [1]. So I assume that that mode relays the RAs & etc, but replaces the link-local address in the RA & etc with that of the relaying interface. [0] <https://www.snbforums.com/threads/ipv6-passthrough-disadvant...> [1] <https://github.com/Yamatohimemiya/6relayd>

▲

valleyer an hour ago | parent | prev [-]

The Apple AirPort Extreme didn't by default until recently: https://support.apple.com/en-nz/103996

	▲	tucnak 8 minutes ago \| parent [-]
		More like Extreme-ly bad router.