IPv6 Firewall on CGA4131COM Seems To Do Nothing!
I just discovered that the IPv6 firewall on my CGA4131COM seems to allow traffic regardless of the settings.
Set to the default of:
LAN-to-WAN: Allow all.
WAN-to-LAN: Block all unrelated traffic and enable IDS.
My internal FTP server is exposed to the Internet, even without any additional rules allowing FTP traffic. I worked around this by adjusting the Windows firewall rules.
My web server continues to be exposed to the Internet even if I switch the firewall setting to Custom and select "Block HTTP".
I was clued into this behavior when I discovered an abnormality in my DNS server and I discovered that it was able to answer requests from the external Internet.
Of course, I'm going to put in a third-party firewall now to deal with this mess, but given that Comcast basically forces IPv6 connectivity through the modem, you'd think they'd at least make the security work.
I tried to call in on Friday about it and was escalated to Advanced Repair. Advanced Repair emailed me this morning and said everything was working properly from my modem and they were able to reach the internet (OBVIOUSLY THEY DIDN'T EVEN READ OR UNDERSTAND THE TICKET).
I tried to call back in, but was hung up when I tried to explain the difference between IPv4 and IPv6.