IPv6 Firewall rules - TL-R605 v1 1.1.1
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Starting to play around with IPv6 and it all works so fare very well... although I'm curious if I can find somewhere in the controller settings to adjust/manage firewall rules for IPv6.
Currently ports and services are exposed to the Internet via IPv6, of course I can do host based firewalls, but preferably do it on the router for the whole LAN.
To decrease the attack surface, I currently disabled IPv6 and enable it only when I play around with it.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
@Fae how was this never identified to be included from the initial release? Without this one could simply use a layer 3 switch for routing.
- Copy Link
- Report Inappropriate Content
@Fae - I was initially happy to see the 1.2.1 firmware, but no updates/improvements on IPv6 Firewall rules.
Is it possible to give any timelines on this, it's something that many would like to welcome to safely implement IPv6.
- Copy Link
- Report Inappropriate Content
I'd like to add my voice to this request. This router is advertised as supporting IPv6, but not having a firewall for IPv6 is inexcusable. This really needs to be made a priority or you should stop advertising that it supports IPv6.
- Copy Link
- Report Inappropriate Content
I would also like to add my voice to this request. It's insane that this router supports IPv6 but has no firewall onboard...
- Copy Link
- Report Inappropriate Content
Yep. IPv6 firewall is needed asap, especially for a business class device.
The Deco series has IPv6 firewall inbound by default and ability to create exceptions.
I would also like to point out that default firewall config should not block some ICMP types as per RFC4890 (section 4.3.1) to ensure much better experience when IPv6 is in use.
IPv6 is more reliant than IPv4 is on ICMP "Packet Too Big" for example.
- Copy Link
- Report Inappropriate Content
@Fae I just got off support. They told me that Ipv6 firewall rules are not supported. When I asked if it was on the roadmap they said it was not. Nor did they have a ETA. Can you please confirm that ipv6 firewalls are on the roadmap. Previously you stated back last year that it was comming in the near future.
Without a Ipv6 firewall having ipv6 support is next to useless as it would expose your devices and their services to the wider internet.
- Copy Link
- Report Inappropriate Content
@anzenketh @Fae if that is indeed the case, I'm considering to setup a pfsense transparant firewall to do the job (and maybe even ditch the TL-R605 router).
It will in my opinion decrease my faith in the "enterprise level" of the hardware from TP-Link, especially that (if I recall correctly) "simple" consumer hardware from TP-Link has decent IPv6 support including the firewall capabilities.
- Copy Link
- Report Inappropriate Content
It's actually hit and miss that TP-Link consumer devices will have IPv6 firewall.
All of the Deco series do, but definitely not all the routers, even current models.
It's a little confusing, I would have thought they would have some sort-of base code they would be building up from for each different processor / wifi chip.
- Copy Link
- Report Inappropriate Content
Dear @paderijk, @add1n1, @anzenketh, and other community members,
Thank you so much for showing your great attention to the IPv6 Firewall rules on the Omada Routers!
It's confirmed that IPv6 Firewall rule is planned to be supported in the firmware adapted to Omada Controller v5.9, which can be expected to release in the end of December. So stay tuned!
Note: All of our releases are subject to advancement or postponement. The release time mentioned here is for your reference only, it's subject to the actual firmware condition.
- Copy Link
- Report Inappropriate Content
@Fae thanks for the update, much appreciated! So will have a nice Christmas project to enable ipv6 on the network. 🕶
- Copy Link
- Report Inappropriate Content
Information
Helpful: 29
Views: 20427
Replies: 84
Voters 26
