[ipv6hackers] Is there a telecom company which adpated IPv6 network on LTE?
john.mann at monash.edu
Fri May 31 06:20:06 CEST 2013
On 29 May 2013 16:51, Luis MartinGarcia. <luis.mgarc at gmail.com> wrote:
> In my opinion, the proper way to protect IPv6 clients that use global
> scope addresses is to place stateful firewalls between the Internet and
In the home environment, the CPE is the logical place to exercise central
control over all access from the Internet to the home
e.g. IPv4 port-forwarding, and IPv6 permit to particular hosts.
But, in the cellular or WiFi hotspot environment, there isn't a nearby
firewall that you control.
And on WiFi, there isn't a place for a firewall between you and other
people sharing the same hotspot!
My ISP, Internode does have a basic ACL firewall service available for
ADSL, cellular etc
It can be on, or off per subscriber. When on, it provides
*Increased protection against spreading network worms, viruses and email
- Outgoing email must be sent via mail.internode.on.net or
- Blocks vulnerable Windows network ports (135, 137, 138, 139, 445) inbound
*Increased protection against intrusion attempts to your broadband router
- Blocks web, telnet, ssh and proxy ports (80, 443, 22, 23, 8080, 3128)
inbound (to you) only.
This isn't a "stateful firewall" that blocks all incoming connections.
However, I think this inbound and outbound ACL filter is quite a useful
In my opinion, mobile devices (cellular and WiFi) need to implement and be
responsible for their own security.
> NAT is not meant to provide security, even though everyone seems
> to believe that.
> Just my two cents.
> Luis MartinGarcia.
> On 05/29/2013 08:27 AM, 김무성 wrote:
> > One of advantage which deploy ipv6 network on telecom is that all
> smart-phone can have a public IPv6 address.
> > But it cause security problem that hacker can attack smart-phone
> > If deploy a NAT6/6 or NAT6/4 device for security, availability of ipv6
> is low
> > And have to have ALG (Application Layer Gateway) device for providing
> service. (ex, SIP ALG for VoIP on LTE, etc)
> > Is there a solution that use public IPv6 address on smart-phone and
> strengthen security?
> > _______________________________________________
> > Ipv6hackers mailing list
> > Ipv6hackers at lists.si6networks.com
> > http://lists.si6networks.com/listinfo/ipv6hackers
> Ipv6hackers mailing list
> Ipv6hackers at lists.si6networks.com
More information about the Ipv6hackers