894
top 50 comments
sorted by: hot top controversial new old
[-] FiskFisk33@startrek.website 17 points 21 hours ago

fun fact, the RFC introducing NAT calls it a "short-term solution"

https://www.rfc-editor.org/rfc/rfc1631

[-] empireOfLove2@lemmy.dbzer0.com 10 points 21 hours ago

bro just add another octet to the end of ipv4. That goes from 4 billion to a trillion and will most definitely outlast modern electronics and capitalism

[-] Part4@infosec.pub 8 points 18 hours ago* (last edited 18 hours ago)

I think they must have thought: 'Well we thought four and a quarter billion was going to be enough. We don't want to repeat the mistake, so let's create an unimaginably large address space.'

Which, with the benefit of hindsight, now looks daft itself.

[-] TWeaK@lemmy.today 4 points 18 hours ago

It looks daft now with a little hindsight, but we're kind of still in the foresight stage for the overall life of IPv6.

[-] blackstrat@lemmy.fwgx.uk 27 points 1 day ago

Ipv6 is broken for those that want control over their home networks thanks to Google and terribly written RFCs.

All that was needed was an extra byte or two of address space, but no, some high and mighty evangelicals in their ivory towers built something that few people understand 30 years later. Their die hard fans are sure that this will be the year of ipv6. The Year of Linux on the Desktop will come 10 years before the year of ipv6.

[-] InnerScientist@lemmy.world 6 points 18 hours ago

Ipv6 is broken for those that want control over their home networks

I don't see how? Works great for my home network.

[-] blackstrat@lemmy.fwgx.uk 1 points 8 hours ago

I want per device firewall and DNS rules for myself, the wife and the kids. With opnsense or pfsense I don't believe this is possible with SLAAC, which is what android only supports.

Shove all devices on a flat network with no special firewall rules and you are probably golden. But trying to control your own network, last few times I've tried, is impossible.

[-] InnerScientist@lemmy.world 1 points 45 minutes ago* (last edited 43 minutes ago)

I've done this using separate networks, each device group I want to treat differently get's its own subnet/vlan pair and I firewall the whole vlan. No matter what ips clients have (or even what ips they statically set themself) they can't get past the firewall.

To physically get them connected to the network I use something similar to this config to have one wpa2-personal ssid that leads to multiple vlans depending on the password. Though you could also have multiple ssids with one vlan each or even wpa2-enterprise.

The router doesn't know the IP of android devices (though it doesn't need to), it only knows the vlans of the clients and what network they come from. For all other clients I have dhcpv6.

DNS is on the router and can be set for each network.

[-] modus@lemmy.world 2 points 15 hours ago

Broken how? What parts are not commonly understood?

[-] FEIN@lemmy.world 2 points 15 hours ago

What did Google do? Just curious as I'm not into home networking

[-] blackstrat@lemmy.fwgx.uk 1 points 8 hours ago

They refuse to support DHCP6 and will only use SLAAC on Android devices.

[-] modus@lemmy.world 1 points 3 hours ago

Do they only use SLAAC because it's easier to tie devices to MACs and therefore identities?

[-] electricyarn@lemmy.world 9 points 1 day ago

And 10 years before fusion power?

[-] ChronicEntertainment@lemmy.zip 1 points 20 hours ago

Imagine using ipv6

[-] DarkSideOfTheMoon@lemmy.world 16 points 1 day ago

Also for home network I don’t won’t my IOT to have a real IP to the Internet. Using IPv4 NAT you can have a bit of safety by obscurity

[-] pupbiru@aussie.zone 8 points 20 hours ago

NAT is not much different to a firewall though… just because the address space is publicly routable does not mean that the router has to provide a route to it, or a consistent route

NAT works by assigning a public port for the outgoing stream different to the internal port, and it does that by inspecting packets as they go over the wire: a private machine initiates a connection, assign an arbitrary free port, and sends that packet off to the router, who then reassigns a new port, and when packets come in on that port it looks up the IP and remapped port and substitutes them

that same process can easily be true in IPv6 but you don’t need to do any remapping: the private machine initiates a connection, and the router simply marks that IP and port combination as “routable” rather than having to do mappings as well

[-] InnerScientist@lemmy.world 1 points 18 hours ago* (last edited 18 hours ago)

I don’t won’t my IOT to have a real IP to the Internet

Why not? What's the difference to them having a nat ipv4?

load more comments (5 replies)
[-] Tiger_Man_ 59 points 2 days ago

I hope nat burns in hell when ipv6 will become standard

[-] Opisek@lemmy.world 26 points 1 day ago
[-] cornshark@lemmy.world 13 points 1 day ago

It's the year of the ipv6 server

load more comments (16 replies)
[-] frezik 210 points 2 days ago

I know it's a joke, but the idea that NAT has any business existing makes me angry. It's a hack that causes real headaches for network admins and protocol design. The effects are mostly hidden from end users because those two groups have twisted things in knots to make sure end users don't notice too much. The Internet is more centralized and controlled because of it.

No, it is not a security feature. That's a laughable claim that shows you shouldn't be allowed near a firewall.

Fortunately, Google reports that IPv6 adoption is close to cracking 50%.

load more comments (23 replies)
load more comments
view more: next ›
this post was submitted on 01 Aug 2025
894 points (100.0% liked)

Programmer Humor

25436 readers
953 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS