Business Community > Routers > ER605 IPv6 firewall
< Routers

ER605 IPv6 firewall

ER605 IPv6 firewall

ER605 IPv6 firewall
ER605 IPv6 firewall
2025-04-22 08:49:09 - last edited 2025-04-23 01:05:55
Tags: #IPv6 #Firewall #ACL
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6

Hi,

 

I have just changed to a new ISP that supports IPv6. Reading into some forum posts there are concerns raised about the security of IPv6 on the ER605v2 router. A lot of these posts pre-date the latest firmware where it appears some of these vulnerabilities may have been addressed on the device so just want to confirm the firewall/security of using ipv6 on this device. 

 

Do I need to set up any particular ALC rules or is the default that IPv6 is not accessible from the WAN?

 

Latest thread I could find was this one which doesn't answer the question conclusively. IPV6 Firewall of ER605 V2 - Vulnerability Concerns - Business Community

 

Thanks,

Roger 

  0      
 
  0      
 
#1
Options
2 Accepted Solutions
Re:ER605 IPv6 firewall-Solution
2025-04-22 13:06:51 - last edited 2025-04-23 01:05:55

since found this guide. How to configure IPv6 Access Control on Omada Gateway | TP-Link United Kingdom

 

It suggests "Since IPv6 does not perform NAT, Omada gateways block external networks from accessing internal networks by default without requiring additional configuration by the user." so think that answers my question. 

Recommended Solution
  1  
  1  
#2
Options
Re:ER605 IPv6 firewall-Solution
2025-04-23 01:05:52 - last edited 2025-04-23 01:05:58

Hi @rogeranderson 

Thanks for posting in our business forum.

Technically, what firewall we refer to is the way to block attacks. Instead of controlling the access.

What you asked is more inclined to be the access control.

IPv6 by default, every router I came across got the default ACL to deny external access to IPv6 behind the router.

This is not a firewall. It's the ACL.

To answer what you asked, the firewall is not fully established. Like the post I replied to earlier. There is a v6 ACL. ACL basically protects the connection when there is no NAT.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
Recommended Solution
  1  
  1  
#3
Options
2 Reply
Re:ER605 IPv6 firewall-Solution
2025-04-22 13:06:51 - last edited 2025-04-23 01:05:55

since found this guide. How to configure IPv6 Access Control on Omada Gateway | TP-Link United Kingdom

 

It suggests "Since IPv6 does not perform NAT, Omada gateways block external networks from accessing internal networks by default without requiring additional configuration by the user." so think that answers my question. 

Recommended Solution
  1  
  1  
#2
Options
Re:ER605 IPv6 firewall-Solution
2025-04-23 01:05:52 - last edited 2025-04-23 01:05:58

Hi @rogeranderson 

Thanks for posting in our business forum.

Technically, what firewall we refer to is the way to block attacks. Instead of controlling the access.

What you asked is more inclined to be the access control.

IPv6 by default, every router I came across got the default ACL to deny external access to IPv6 behind the router.

This is not a firewall. It's the ACL.

To answer what you asked, the firewall is not fully established. Like the post I replied to earlier. There is a v6 ACL. ACL basically protects the connection when there is no NAT.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
Recommended Solution
  1  
  1  
#3
Options

Information

Helpful: 0

Views: 210

Replies: 2

Tags

IPv6 Firewall ACL
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.