The Impending IP Crisis

Factomatic writes "With the supply of IP addresses expected to run out by 2005 due to the popularity explosion of the Internet and the expectation that everything from your phone to your washing machine will soon have its own IP address, Alex Lightman, CEO of Charmed Technology and chairman of last month's North American IPv6 Global Summit tells the New York Times "we're going to need something like 100 IP addresses for each human being." IPv6 will increase the supply of addresses from 4 billion today to a number in excess of 35 trillion that is "so big that there's not a word for the number," says Cody Christman, director of product engineering for Verio, which offers IPv6 in San Francisco, Washington and elsewhere. The article is a good layman's backgrounder on the looming IP crisis."

Not so much a crisis...

[Tom7]

Yeah, but those 100 IP addresses can be behind a household NAT and share a single IP address. With the way people use the internet today, I'm not sure the crisis is so serious...

Re:Not so much a crisis...

[Jeff+DeMaagd]

I agree. For a lot of those devices, I wouldn't want the IP address to be acessable from the outside world anyway.

If I need to remotely access stupid sensors, then I'd rather remotely access a single program on a server at or behind the firewall that handles that sort of thing, and hides the particulars to boot.

Re:Not so much a crisis...

[Cramer]

Idiot. *sigh* The only problems NAT causes are to crappy implementations that make assumptions they shouldn't be making. (i.e. putting address info within the data of the protocol.)

IPSEC works perfectly fine through NAT -- I do so all the time without "non-standard encapuslation and such". The only part of IPSEC that will not work through NAT is header authentication and the various non-standard implementations that cryptographicly sign the entire packet. If the crypto integrity covers the packet header, then altering the address(es) within the header invalidates the packet.

Money talks

[Kombat]

As with everything like this, the powers-that-be (i.e., the telcos and ISPs) will drag their heels until they are either forced to change, or they are convinced it will increase profits. Expect the changeover to go extremely slowly. Expect providers to try every trick in the book to milk their existing network for every last day they can possibly profit from it. The fact that the economy is in the toilet doesn't help either.

Re:Money talks

[stonecypher]

As with everything like this, the powers-that-be (i.e., the telcos and ISPs) will drag their heels until they are either forced to change,

Except that there's been v6 connectivity for sale in almost every major city for years, now. Notably, Pair Networks has offered it since 1999. IIRC, and this might be wrong, Internet2 has been v6 since early on, maybe since day one.

or they are convinced it will increase profits

It will, as soon as the number of v4-only software and devices stops rising. Integration of IPv6 support into the RADs that all these software weenies use will help, though it's sort of a chicken-and-egg problem: nobody's gonna provide v6 connectivity until there's something to do with it, and nobody's gonna support it due to the hassle and the fact that they don't know anyone that has it.

It would be nice if Internet2 would open some of its resources to the real, messy internet; that'd be the sort of kickstart that'd get the whole goddamn thing underway.

Expect the changeover to go extremely slowly.

That's why we're making another IP, instead of replacing it altogether with something new. In theory, it shouldn't much matter; NAT and some dedicated hackery should make the two sort of kind of interoperate a little bit.

Kinda. (grins)

Expect providers to try every trick in the book to milk their existing network for every last day they can possibly profit from it

Yeah. That's called "good business." Besides, the fiber and wire don't need to be replaced; just the routers, and in some cases the end connection equipment (DSL modems that only do PPPoE, for example.)

By the way, I hate alcatel.

The fact that the economy is in the toilet doesn't help either.

Um, yes it does. Labor costs are down. Material costs are down. Land costs are down. Telcos aren't hurting so badly that they can't keep up the constant hardware upgrades they're doing. The economy actually helps quite a bit. They do the work for cheap, make estimations based on current market usage, then the money comes back (like it always does,) usage goes through the roof when people have enough money to try to change the way we buy dog food ("the net is the future, man pass the bong, I'm gonna be rich",) telcos overearn predictions, foolish investors think they're a good investment, they get money, the ceos do something horrible and amoral, everyone gets horrified and starts asking for inquiries, all the money goes away, and so it goes.

Duplicate story...

[brooks_talley]

I'm sure I saw this exact same post on /. in 1998. Except then it said we'd run out of addresses by 2000.

Hello? There's this thing called NAT, you see, and in many ways it's preferable to not have every one of your 100 IP-enabled devices sitting there on the real internet just waiting to get hacked.

Cheers
-b

i'm missing what here is 'news'...

[*weasel]

unless a new prognostication that 'the end is nigh, in 2005' passes as news. everyone knows it's gonna happen. just as we all know that with NAT and proxies, most of it can be safely delayed by tech companies until they have an outside fiscal force to upgrade.

and i doubt my fridge will have an IP address anytime -before- ipv6 starts to be rolled out en masse.

as with all pure tech - it needs that killer app. something needs to come out that is so fantastically great that everyone has to have it - and it needs to require ipv6. until then - at best we'll be going dual-mode.

good luck finding that app, and educating users what it is, and what it does.

overdramatic

[sstory]

Isn't this a little overdramatic? Crisis? Having to switch to an updated protocol is a crisis?

Not again...

[Delphix]

Why does every human need 100 IP addresses? Home routers seem to solve a lot of the problems. A simple IP Masq fix...

As for the days of every appliance in our homes having an IP... I think that dream of the late 90s has been shelved for a while. It'll probably be decades, if ever, before our fridges are calling up to get food delivered...

The average home generally has a couple PCs / laptops...maybe an XBox or PS2 connected to net.

Re:Bigger numbers.

[Surak]

IPv6 will increase the supply of addresses from 4 billion today to a number in excess of 35 trillion that is "so big that there's not a word for the number,"

how about "thirty six trillion" ?

I know. The whole statement is pointless. He may as well have said that IPv6 will increase the supply of addresses from 4 billion to a number in excess of 10 (...yada yada.) There are LOTS of numbers between 35 trillion and numbers that have no name.

To those who say we have enough IPv4 space

[riflemann]

There are people who have stated that we've only used up around 60% of the IPv4 space and we have plenty more to last for a long time yet.

I want to see IP as more of a general resource like electricity or water. You just plug anything into your wires/pipes, and it gets full access to the resource. Want more things getting water such as a washing machine? Then just run another pipe to it and it's got access. The current hacks of NAT are equivalent to only being allowed to install one tap in your house, and "proxying" the rest with buckets. Why cant it be like a water or electricity supply?

Those saying 'we have plenty of space left' obviously dont realise that the reason for this is that the current allocation policies for IPv4 make it impossible to get space for arbitrary devices. Yes, if you only allocate one IP address per gateway, of course you wont run out for a while. But that then mandates the use of ugly hacks such as NAT. A single tap per house/organisation.

To make full use of the potential of the net, one must be able to freely allocate IP addresses to any devices that want them, no matter how trivial it may seem today. Back when IP was invented, it was never in anyones wildest dreams that there would be an address shortage. There were barely a hundred hosts yet 32 bits of space. Look at what's happened in 20-odd years!

Lets not make the same mistake today.

when did /. become a Rupert Murdoch company?

[deviator]

These articles remind me of FOX news... total sensationalism to drive advertising & page views.

Whether you "approve" of NAT or not, the truth is that it is a very effective band-aid that has hindered the progress of IPv6 because it works so well. We'll be on IPv4 for at least another ten years.

Another advantage of IPv6

[riflemann]

IPv6 has a nice advantage over IPv4 that I havent seen mentioned many places before. This is one on security.

One of the major contributing factors to problems such as spammers and crackers is that it's so darn easy to scan subnets in IPv4 for open hosts. It can take under a minute to scan a complete /24 for hosts with open ports.

Now with IPv6 this situation is different. Each subnet has 64 bits of address space. That is, 18446744073709551616 IP addresses per subnet. Now, if someone could portscan at the rate of 100 addresses per second (pretty impressive), then each subnet would take 5.8 billion years[0] to scan for hosts. For one subnet! And to put this in a wider context, each site in ipv6 has 65,000 subnets. Effectively making network scans a thing of the past, and massively increasing security of the 'net.

Of course, one can still scan known hosts (eg from web server logs), but doing that is a heck of a lot harder - you'd need to get them in the first place.

[0] Said with appropriate finger quotes.

Impending?!

[mekkab]

As a networking engineer, I am very concerned about the impending doom of IPv4 addresses running out.

But I am even more-so concerened about the sun burning out, because that would mean catastrophe for the human race! (not to mention it would mess up our nift wi-fi stuff!)

Seriously- with stop-gaps like NAT and ISP's recycling IPs from a pool for all users, its not gonna kill us.

Let cell phones work out this ipv6 thing, then tunnel, then upgrade piece by piece.

Re:100 addresses per human being?

[JanneM]

Because your other devices will want to keep their identity even when not at home. Imagine having an IP-based telephone as a (slightly contrived) example. You want to be able to route to it no matter what network it resides on at the moment.

I use my laptop in a number of places; home and at the department is the most common places but also others. Moving from place to place is a bit of a pain, though - I need to get a new IP address, change the SMTP server and so on, and setting up other stuff so I am allowed to access it no matter where I am is painful and error prone. If my laptop could keep its identity irrepsectively of where it is physically located on the net it would simplify life a whole lot for me.

NAT works pretty well for the stuff we do today, but it precludes a lot of interesting uses, and is actually quite painful compared to the possible alternative.

Re:Imminent death of IPv4 predicted!!

[Troed]

No, we should withdraw all the A-class networks that are unnecessarily allocated to US companies.

OTH - I'd rather move to IPv6.

Re:What's wrong with IPv6

[jaredmauch]

I don't mean to flame you, but I'd like to address the technical issues surrounding your statements.

Backbones are already upgrading to IPv6 enabled software and hardware. My employer has plans to run dual-stack IPv4 IPv6 later this year which means that any existing IPv4 customer can give us a call saying "enable v6" and we can do it that day. (assuming they have their hardware/software in place). No tunneling, no 6to4 gateways, it'll just work. I see no long-term viability of the 6to4 gateways, in the same way that we didn't see caches go mainstream for every internet user. (yeah yeah, some of you will claim bittorrent is a large distributed cache, and while that might be the case, i'm talking about for most of the general public, the AOL/IE users that don't know how to spell IP).

If you also see one of my previous comments on IPv6 here about who is supporting it (note, what you might define as a backbone isn't what the rest of the network might..) and has existing routes in the tables, you'll get an idea of who is at least prepared for the new future of impossible to read ip addresses.

If everyone runs dual-stack v4v6, you'll see the ability to access your existing services while continuing to be able to gain access to the IPv6 content. Personally, I've seen that in cases like where a RedHat release comes out, I can get faster transfer rates going to the IPv6 mirror than the IPv4 mirror. Everyone is hammering the v4, which makes the v6 available for me :). I'm just waiting for Linksys (now cisco) and the other consumer product people to realize that they need to upgrade their devices so they can do IPv6 nat for those cablemodem routers, etc..

Here's where I think that the local loop (dsl, cable) providers can go and start to seriously make money and make IPv6 viable: IPv6 enable your network, then offer VoIP services over SIP enabled devices. This way you don't run out of numbering space (ip and pstn). (Trivia: how many ips would it take to convert the existing PSTN network to VoIP, if each phone number required an IP address).

Re:Imminent death of IPv4 predicted!!

[AndroSyn]

I disagree. Using unique IP addresses whenever possible is the way the internet is supposed to work. This NAT stuff is just an awful, awful hideous hack. The correct solution is IPv6, not NAT ourselves forwards and backwards.

IPv6: The Coming Address Shortage

[handy_vandal]

Of course we'll run out of IPv6 addresses.

Not right away ... but surely something will be invented that calls for more addresses.

For example, teleportation might require separate addressing for all possible energy states of all elementary particles in the teleported object.

Don't say it can't happen. Remember when 64k was all the memory anyone would ever need? and a megabyte hard drive was out of your price range?

Re:Imminent death of IPv4 predicted!!

[The+Spoonman]

In a way, we're not talking about the Internet here. We're talking about a company's, or even an ISP's, private network which also has access to the Internet. Giving those machines puplic IPs is not only a waste of address space, but a security risk. Those that need to access the Internet don't need public IPs. Those that need the Internet to access them, do. Forcing the world into a MAJOR move to IP6 just because you consider NAT a "hack" is unreasonable. NAT works, and works well. There's nothing I can't do behind NAT that I can't do with a public IP (including VPN, that's just easier with a public). The correct solution is to not give Nancy-in-accounting's printer a public IP, or worse, have to force accounting to upgrade that printer because its hardware doesn't support IP6.

Shame on you for suggesting otherwise.

Re:Imminent death of IPv4 predicted!!

[peccary]

What? "broken"?? My god, referring to the correct, as-designed intended use of the protocol as BROKEN!

I know, let's just forget about Host Requirements, and about a richly-interconnected fully-reachable peer-to-peer network. That old Internet stuff is just "broken". Let's build us a hierarchical circuit-switched network, and then appoint a monopoly to manage it!

Re:Imminent death of IPv4 predicted!!

[jez9999]

Sounds to me like one of many Mozilla standards zealot arguments.

A: Why doesn't Mozilla popup image ALT text as a tooltip?
B: Because it's not meant to do that, the standard says so.
A: But nearly every other browser does it!
B: But the standard doesn't say you should.
A: But many websites use this functionality anyway!
B: But the standard doesn't say you should.
A: These sites are *already using* this functionality! Why are you building a browser that doesn't work properly with a large number of websites, and when implementing this functionality wouldn't hurt anyone, and may even help accessibility??
B: Because the standard doesn't say you should.
ad infinitum...

Re:Imminent death of IPv4 predicted!!

[Nurgled]

Hell, there's really no reason an ISP needs to give out public IPs, either.

NAT works okay when I'm controlling the box doing it. I can hack in special stuff to handle esoteric protocols which expect a public IP.

If my ISP runs the box doing NAT, there's suddenly a bunch of things I won't be able to do anymore, and I'll promptly switch ISPs to one which will let me use the Internet as it's intended.

Re:Imminent death of IPv4 predicted!!

[4of12]

I like the idea of lots of IPv6 addresses, enough to provide for ISPs to provide each subscriber with a static IP address.

Open relay? Source of spam?

Guess what? When re-connect you get that exact same address that is going to be at the receiving end of irate spam recipients!

No more evading consequences through the magic of DHCP.

And, for one-time lusers that change ISPs after each offense, the responsible ISP that has clear identifying information (I had to show a driver's license to get my account) about said spammer can post `em to a blacklist. Irresponsible ISPs can simply have themselves blacklisted wholescale.