fun fact, the RFC introducing NAT calls it a "short-term solution"
bro just add another octet to the end of ipv4. That goes from 4 billion to a trillion and will most definitely outlast modern electronics and capitalism
I think they must have thought: 'Well we thought four and a quarter billion was going to be enough. We don't want to repeat the mistake, so let's create an unimaginably large address space.'
Which, with the benefit of hindsight, now looks daft itself.
It looks daft now with a little hindsight, but we're kind of still in the foresight stage for the overall life of IPv6.
Ipv6 is broken for those that want control over their home networks thanks to Google and terribly written RFCs.
All that was needed was an extra byte or two of address space, but no, some high and mighty evangelicals in their ivory towers built something that few people understand 30 years later. Their die hard fans are sure that this will be the year of ipv6. The Year of Linux on the Desktop will come 10 years before the year of ipv6.
Ipv6 is broken for those that want control over their home networks
I don't see how? Works great for my home network.
I want per device firewall and DNS rules for myself, the wife and the kids. With opnsense or pfsense I don't believe this is possible with SLAAC, which is what android only supports.
Shove all devices on a flat network with no special firewall rules and you are probably golden. But trying to control your own network, last few times I've tried, is impossible.
I've done this using separate networks, each device group I want to treat differently get's its own subnet/vlan pair and I firewall the whole vlan. No matter what ips clients have (or even what ips they statically set themself) they can't get past the firewall.
To physically get them connected to the network I use something similar to this config to have one wpa2-personal ssid that leads to multiple vlans depending on the password. Though you could also have multiple ssids with one vlan each or even wpa2-enterprise.
The router doesn't know the IP of android devices (though it doesn't need to), it only knows the vlans of the clients and what network they come from. For all other clients I have dhcpv6.
DNS is on the router and can be set for each network.
Broken how? What parts are not commonly understood?
What did Google do? Just curious as I'm not into home networking
They refuse to support DHCP6 and will only use SLAAC on Android devices.
Do they only use SLAAC because it's easier to tie devices to MACs and therefore identities?
And 10 years before fusion power?
Imagine using ipv6
Also for home network I don’t won’t my IOT to have a real IP to the Internet. Using IPv4 NAT you can have a bit of safety by obscurity
NAT is not much different to a firewall though… just because the address space is publicly routable does not mean that the router has to provide a route to it, or a consistent route
NAT works by assigning a public port for the outgoing stream different to the internal port, and it does that by inspecting packets as they go over the wire: a private machine initiates a connection, assign an arbitrary free port, and sends that packet off to the router, who then reassigns a new port, and when packets come in on that port it looks up the IP and remapped port and substitutes them
that same process can easily be true in IPv6 but you don’t need to do any remapping: the private machine initiates a connection, and the router simply marks that IP and port combination as “routable” rather than having to do mappings as well
I don’t won’t my IOT to have a real IP to the Internet
Why not? What's the difference to them having a nat ipv4?
I hope nat burns in hell when ipv6 will become standard
Any day now brother
It's the year of the ipv6 server
I know it's a joke, but the idea that NAT has any business existing makes me angry. It's a hack that causes real headaches for network admins and protocol design. The effects are mostly hidden from end users because those two groups have twisted things in knots to make sure end users don't notice too much. The Internet is more centralized and controlled because of it.
No, it is not a security feature. That's a laughable claim that shows you shouldn't be allowed near a firewall.
Fortunately, Google reports that IPv6 adoption is close to cracking 50%.
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
