I have an IPv6 connection through an IPv6 in IPv4 tunnel from Hurricane Electric and I had no issues with this when I initially set it up in the router's web interface.
However, if I enable "IPv6 Simple Security" on the IPv6 Firewall page, I can no longer connect to IPv6 websites. For example,
http://bin6.it is an IPv6-only website and the connection will simply time out with the option enabled. If I disable Simple Security, then I can connect to the site without any problems.
The main reason I wanted to enable this is because I'd like to stealth/hide ports on my IPv6 addresses in much the same way the router already does for the IPv4 address from my ISP. For instance, an IPv6 firewall test at
http://www6.ipv6.chappell-family.co.uk/cgi-bin6/ipscan-js.cgi indicates that ports on my laptop are visible to the outside world. Am I misunderstanding what "Simple Security" is supposed to do or is there perhaps a bug in the firmware (version 1.01)?
I should note that I've also tried using the more advanced IPv6 firewall rules instead of Simple Security to no avail. The configuration I've tried for this is as follows:
Turn IPv6 Filtering ON and ALLOW rules listed
--Rule 1
Source: LAN
IP Address Range Start: 2001:470:1f11:500::
IP Address Range End: 2001:470:1f11:500:ffff:ffff:ffff:ffff
Protocol: ALL
Dest: WAN
IP Address Range Start: 2000::
IP Address Range End: 3fff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
This firewall rule, however, results in the same problem that enabling Simple Security caused. Note that 2001:470:1f11:500::/64 is the IPv6 block that I have for my tunnel connection and that currently global IPv6 addresses fall in the 2000::/3 range. I have also tried firmware version 1.02, but the problem persists.
Does anyone have any ideas on what else I could try with the firewall rules?