On 26/11/19 23:56, Ralph Seichter wrote: > * Adam Carter: > >> when i enable v6, all my internal hosts become directly routable from >> the Internet via the /56 my ISP assigns me. > > Even pretty anemic hardware can handle the demands of an IPv6 firewall, > for example using iptables/nftables. The demands of IPV6-related > processing should actually be a bit lower than for IPv4, because IPv6 > does not need NAT. > AND a router should be able to handle IPv6 easier than v4, because the routing is hierarchical. v4 was meant to be like that, but fragmentation has completely messed things up. v4 routing tables are now a complete mess.
v6 allocates a huge block to each of the registries, which is subdivided among the ISPs, which is subdivided among the customers, which is then shared out among the customer's network. So each router has a much simpler task just shunting packets up or down based on whether the computer's address belongs to the router's network or not. Cheers, Wol
