I understand how stateful firewalls work. But to allow game servers etc to run, you need to explicitly accept incoming connections somewhere, as you don't know the IPs in advance that will connect.
Then if you're using STUN and TURN (which you'll have to, because non technical users do not find configuring firewalls easy) then what is the advantage of IPv6 to a consumer? There is no real p2p benefits.
I'm trying to call out this contradiction:
1) You need a firewall on IPv6 instead of relying on NAT, otherwise everything is routable globally and insecure
2) There will be this glorious new p2p world for consumers with ipv6
If you need a firewall, then really for non technical users you cannot have this p2p world. It is too complicated.
Then if you're using STUN and TURN (which you'll have to, because non technical users do not find configuring firewalls easy) then what is the advantage of IPv6 to a consumer? There is no real p2p benefits.
I'm trying to call out this contradiction:
1) You need a firewall on IPv6 instead of relying on NAT, otherwise everything is routable globally and insecure 2) There will be this glorious new p2p world for consumers with ipv6
If you need a firewall, then really for non technical users you cannot have this p2p world. It is too complicated.