On 03 Feb 11:22, Mark Rogers wrote:
On 03/02/10 10:59, Wayne Stallwood wrote:
Well "more addresses" is so many more we can ditch NAT which was a horrible hack in the first place.
NAT is a horrible hack, but does have significant benefits; imagine having an office full of internet-addressable Windows PCs! It may or may not be trivial to configure a firewall (and maybe IPv6 has something to offer here? I know very little about IPv6 as yet) but with IPv4 and NAT it's difficult to give multiple PCs in one office unrestricted bi-direction internet access, and the world would probably we a worse place were that not true!
Meh - drop in a stateful firewall on the router, done. Make it so that ipv6 outbound can go anywheres and inbound is only on things that it knows about - usual firewall/routing practice. NAT has made most people lazy about what their firewall should be doing.
The only real issue here is once we ditch NAT's (which hopefully will become redundant) you no longer have the same common private address subnets in use everywhere. 192.168.0.whatever isn't in itself particularly memorable except that we are used to seeing it so frequently.
Because most people don't need DNS most people don't have it, but if most people needed it then it would become even more trivial to install (and all routers would have it in the same way they have DHCP now). "Most people" don't know IP addresses now anyway, they access machines on the network by name (\Dave, \Server, or the GUI equivalents). I like knowing IP address now but I don't suffer as a result of not remembering MAC addresses and I don't recall the IP address for (eg) Google.
Erm, I think everyone in the world cares about DNS... It's very difficult to do name based virtual hosting without it! If you're meaning small offices, then, erm, most of those by now will be running a DNS server of some variety, maybe even dnsmasq (which is a lovely dhcp/dns server pairing). Also, with "zeroconf" or whatever it's called these days... (avahi-daemon supplies the service in linux) - there's a whole other way of doing lookups too.
Anyway, my appetite has been whetted, so where do I start?
At the beginning!
At home I have a Virgin cable connection, but at work we are an Enta reseller and I recall reading in the previous thread that this might be a Good Thing as far as IPv6 is concerned?
Don't believe that Virgin provide native ipv6, so you'd be looking at tunnel providers for home, I'd suggest looking at: http://tunnelbroker.net/
Terminate the tunnel on to a permanently on linux box on the network, use radvd to then advertise the ipv6 space to anything else on the network, rejoice as it all "just works".
With Enta, I believe that they'll do native IPv6 on the ppp session, at which point it'd be down to wether or not your router supports it.
Thanks,