Port forwarding is necessary due to NAT not firewalls.
It’s not that your router blocks new incoming connections at port X, it’s that it does not know which local client it’s meant for, since it’s addressed to the public IP that is held by your router.
With IP6 it’s lan client also gets assigned a public IP6 address (as there are plenty) and so the router receives a connection addressed to a Lan client and knows where to route it.
But how does this change using VPNs with torrenting? Especially because it seems like the vast majority don’t support ipv6 as well as openvpn often leaking ipv6 IPs.
Hmm, so no firewall in the router blocking ports, instead blocking happens on the actual client?
Port forwarding is necessary due to NAT not firewalls.
It’s not that your router blocks new incoming connections at port X, it’s that it does not know which local client it’s meant for, since it’s addressed to the public IP that is held by your router.
With IP6 it’s lan client also gets assigned a public IP6 address (as there are plenty) and so the router receives a connection addressed to a Lan client and knows where to route it.
Ah interesting! TIL. Thank you!
But how does this change using VPNs with torrenting? Especially because it seems like the vast majority don’t support ipv6 as well as openvpn often leaking ipv6 IPs.
Not sure since I don’t use a VPN. If they assigned a unique public IP per user they could just forward every incoming connection to the user’s PC.
If they don’t they need to setup some port forwarding rules.
If openVPN leaks IPs that’s surely a bug, if it’s specific to v6 you can’t use openVPN and IPv6 till the bug is fixed
The router is still your firewall, it just doesn’t need to do NAT with IPv6
Normally firewall is on the router. Sensitive environments usually run one on the client as well.