Default security functions on an IPv6 CPE

Nick Hilliard nick at
Fri May 6 21:49:42 CEST 2011

On 06/05/2011 20:21, Gert Doering wrote:
> The naive user should better learn that there is no security but proper
> *host* security

the naive user - i.e. 97% of all users - will never learn anything about 
security; nor will they ever care.  They depend completely on sensible 
default settings.

It is good if there is a single line of defence (host security).  It is 
slightly better to have multiple lines (host security + inbound cpe packet 
filters / stateful firewalling).


More information about the ipv6-ops mailing list