Slashdot Mirror
IPv6 is Here
shawn(at)fsu writes "Reuters is running a story that Vinton Cerf of the Internet Corp. for Assigned Names and Numbers (ICANN) says that "IPv6 been added to its root server systems" I like how they said that it will run along side IPv4 for 20 years to get rid of the bugs.
A few previous Slashdot stories out of many here, here and here"
Cerf said about two-thirds of the 4.3 billion Internet addresses currently available were used up, adding that IPv6 could magnify capacity by some "25,000 trillion trillion times."
Of course, if v4 runs along side of v6 for 20 years that may mean that it would be harder to implement an IP-per-user scheme. I don't know. But, 20 years should be enough time to work out any bugs:
He said the IPv6 system would run parallel to IPv4 for about 20 years to ensure that any bugs or system errors were weeded out.
Cheers!
Erick
http://www.busyweather.com/
That's optimistic.
FTA: Cerf said about two-thirds of the 4.3 billion Internet addresses currently available were used up, adding that IPv6 could magnify capacity by some "25,000 trillion trillion times."
Perfect for colonization of other planets. If each human being has their own IP, then we would need to pack a whole bunch of planets to require more than that! They aren't kidding when they say they'll run IPv4 with IPv6 for twenty years. In that time, we won't have used even a fraction of a couple percent of available IPs, even if we assign every human being on the planet with one, and every company with a giant block.
The dangers of knowledge trigger emotional distress in human beings.
short article). There is one descrepcy that I'm sure I won't be the first
to notice it, either:
Now, I could be wrong; but my understanding was that the need for IPv6 comes from the scarcity of IP addresses (eg 12.34.56.78) not the scarcity of domain names (eg slashdot.org, slashdot.net, slashdot.jp).
I could get something equivalent to my own Class A block of IPv6 addresses for my home. I'd give every object in my apartment an assigned IP Address. How the pieces of toilet paper get access to the Internet would remain to be seen, but at least on paper (heh) it would have an IP Address. And why not? So many IP addresses possible I could have my own class A block (or IPv6 equivalent) and hardly put a dent in the amount of available IPv6 addresses...but until an ISP offering DSL in my area supports IPv6 I'm outta luck...
...in bed
Sounds like an open source project to me. I'm surprised they didn't just rename it to IPv0.4 so they could use the fact that it's pre-1.0 as a safety net for bugs, etc.
It seems like just yesterday, I was surfing the Web, telnetting ports and Cracking warez with little old IPv1, strange - we are on v6 now and I dont even remember 5. guess I'm suffering from geezer syndrome.
it's called RFC 1918 - use 10.x.x.x. Your very own class A address range!
Someday, I hope you will have the opportunity to explain to your grandchildren how YOU FAIL IT!
This is just the first step to real world-wide IPv6 deployment (replacing the mbone experimental setup). You still need to get all the intermediaries like ISPs up to speed.
I'd say that 20-year IP 4-to-6 transition
estimate more realistic than the NTSC-to-HDTV plan,
not to mention the relatively elegant solution for
IPv4 and IPv6 to coexist as they do now.
an ip address for every human being... and they're non portable great!
i've said it before, and i'll say it again: ipv6 looks good on paper, but their current policy of not assigning IPs to anyone but big isps who will in turn sub delegate them to others is hindering the usefulness to small and medium ISPs
basicly you'll be locked into one isp, or face a major renumbering burden due to the non-portability of the addresses (and no it does NOT involve simply switching the network part)
I cant help but wonder when we will run out of these because: every person with an ip, every computer shipping from the factory with an ip, every rfid tag with an ip *tin foil hat time* its odd how quickly we can mess up a good thing..
Ah! Now I will have: www.me.com - Web site mobile.me.com - To contact me watch.me.com - My wristwatch mykids.me.com - My kid home page foo.mykids.me.com - Foo (my kid) home page home.me.com - My home network and other home appliance can be control from here (authentication require) router.home.me.com - My DSL err LL connection via LINUX :-)
The important thing is not to stop questioning --Albert Einstein.
Excellent. My shoe polisher needs an IP address. So does my bottle of shampoo.
"Who are in control, they are not in control of anything - they don't even control themselves!" - Glen Beck
or does "virtually unlimited" seem like a very silly and shortsighted estimate of the number of possible addresses? Especially because the uses/monopolization of these addresses will probably grow in unforeseeable ways.
We Are Familiar With Elephants By Virtue Of Their Size.
This reminds me of the movie 'The President's Analyst' only now we're talking IP addresses instead of phone numbers, and ICANN has superseded TPC (The Phone Company) :-)
Wonder who'll play Coburn's part in the new movie?
Sweet! All the bugs will be worked out just in time to play Duke Nukem Forever online!
like maybe microsoft builds a actually decent operating system and has it run along side 3.0 for twenty years
IPv6? I was going to upgrade to IPv4 this fall.
Geesh, my VAX collection in my basement is gonna have to be upgraded now. DECNET's still good enough for me.
(yeah, yeah, I do have a translation gateway just so I can post on Slashdot)
TDz.
What, can you think of better uses for a mole of IPs per square foot?
I can't get a native IPv6 address (block), and I'm on a university network. Neither can I get a IPv6 address from T-Online at home. To me this means that IPv6 is there, but not here.
"I like how they said that it will run along side IPv4 for 20 years to get rid of the bugs"
Fantatstic! This means it will only be another 20 years before we get a mass roll out of IPv6. *grin*
WURD!!
I posted How the Internet is broken, how to fix it, and why that's not going to happen, a rant about IPv6 adoption, to my personal site.
Basic idea - include IPv6 over IPv4 tunneling software in Linksys routers. This would allow people to run IPv6 networks in their houses and talk to IPv6 networks elsewhere. This would fix a lot of problems that NAT introduces, and would sidestep the wait for IPv6 ISPs. It would also provide enough of a user base to encourage application developers to include IPv6 support.
Of course, this would kill Linksys' NAT router sales, so they have no incentive to do so, but I like to think it's a good idea.
Why can't I moderate something "Wrong" or at least "Grossly Misinformed"?
IPv6 uses 128-bit addresses. For those who can't count that high, let's see, thats:
, 45 6
340,282,366,920,938,463,463,374,607,431,768,211
in decimal. Just try to use all those up! Well, as long as you don't let the spammers onboard first.
At least it's finally a standard and is becoming more and more user friendly. There are still alot of problems right now though, and those being a user has a hard time configuring a tunnel on his own if hes new. But overall, the new addressing space is a big plus.
When expecting to find intelligence in a person, do not look at their age but instead look at their IQ and maturity firs
doubting human potential for misuse is the number one mistake.. just wait until each segment of your dna has its own ip address..
of course, if we all have ip addresses and are directly on the internet, dont we loose the nat protection for all our windows os ! i depend on my linksys to save me from the internet!!
The current IPv4 net has de-facto weak anonymity via DHCP, proxying, etc. It is effectively anonymous unless police authorities get very interested and are willing to wade through logs. And these logs get quickly lost/deleted.
IPv6 is the end of the 'net as we know it. Whether it will be an improvement is hard to say. I'm sure it will have a chilling effect. This might be good at stopping some undesireable activities (spam, etc. if enforced) but will also inhibit free speech, particularly in less-free countries.
yeah, linksys sure would hate for that to happen to its router sales. No company would want to sell four personal firewalls to every home instead of one whole router.
Try again.
-- 'The' Lord and Master Bitman On High, Master Of All
Great re-hash of the article and summary. Well done I say, well done!
The next comment I write will be ready soon, but subscribers can beat the rush and see it early!
Attack of the Root Servers.
Yes, but do HalfLife 2 and DoomIII support IPv6?
Until these two critical applications support it, I ain't agonna go!
www.eFax.com are spammers
Easy, RFID chips implanted in every sheet. Then when you visit the store
No doubt in 20 years, each roll of toilet paper will
already have a pre-assigned IP address at the factory,
and a little microchip inside the cardboard core, so
it can track itself through the supply chain and the
grocery store and your bathroom cabinets; so that when
it finally sees it's been installed on the holder, it
can start displaying targetted ads on the digital-ink
layer of the exposed outer sheets.
>;k
I'll be in my forties then! aaaaaaaaaahhhhhhhhhhhh! pre"id-life crisis" crisis!!
on the other hand at least by then my websites will load correctly....and maybe I'll have enough bandwidth to handle all the ad-crap
Did you know you can be apathetic to apathy? Not that I give a shit...
I live in Portland Oregon and every once in a while I survey the local DSL ISPs about IPv6. The answer has been consistenly "We have no plans to deploy IPv6." and "No customers have been asking for it."
Can someone point out ISPs that offer native IPv6 service to home users?
China is already testing IPv9, something which promises to consume IPv6.
;)
Link to article - China's New Generation Of IPv9 Network Technology Ready
I wonder how this has been implemented. I can't find an AAAA record for f.root-servers.net (the server operated by ISC).
I think you over-estimate the general public's interest in security. I know a bunch of people who never go to Windows Update and never update the anti-virus software that come with their computer.
:)
The reason they buy NAT routers isn't for the security they bring, that's a happy side effect. The reason they buy NAT routers is because they have 2 computers they want to get on one cable modem and the guy at Best Buy said they needed one. They won't even be asking the question once IPv6 rolls out, except for wireless base stations.
I think getting these people to turn on the software firewall in Windows or OS X would be a challenge, convincing them to spend $50 - $100 on a piece of hardware that does more or less the same thing would be a losing proposition.
Of course, I would love to be proven wrong by Linksys
Why can't I moderate something "Wrong" or at least "Grossly Misinformed"?
One step closer to v7 ^_^
I, for one, welcome our new IPv6 overlords.
When will Slashdot get an IPv6 address. Everything supports it - DNS, Apache, etc, nd all they need is to either get an IPv6 tunnel from a broker (the cheap option), or get their ISP to let them have it natively.
Get your own free personal location tracker
Anyone remember this from a few months back? And it's been how long since TCP has been out?
20 years might not be enough.
Blaze a trail to the New World
ipv6 or ipv666
Take the following:
Rev 13:16 And he causeth all, both small and great, rich and poor, free and bond, to receive a mark in their right hand, or in their foreheads:
Rev 13:17 And that no man might buy or sell, save he that had the mark, or the name of the beast, or the number of his name.
Rev 13:18 Here is wisdom. Let him that hath understanding count the number of the beast: for it is the number of a man; and his number is Six hundred threescore and six.
With no ipv6 number you will not be able to buy or sell and it's long so you'll have to write it down somewhere where you'll always have it, say on the back of your hand. ipv6 is simply ipv666 shortended up a bit to hit the true meaning.
There you have it, conclusive proof.
We are in the end of day's.
repent, Repent, REPENT!!!!
Shop smart, Shop S-Mart.
What do you young'uns need with all those IP addresses? In my day, we only had eight, and they were big and bulky. We didn't have any fancy network address translation, you had to put your 80 pound IP address in your wheelbarrow and roll it across town so Joe Billy Bob Joe Bob could use it! And ol' Joe Bob sure would give you a sound whuppin' if you was late with his IP address!
Gamingmuseum.com: Give your 3D accelerator a rest.
Speaking of IPv6, where are (if there are any) good firewall setups for it?
I've tried ip6wall, but its kinda shoddy and their homepage is even down right now. I use FireHOL for my IPv4 stuff, but I can't seem to find a nice IPv6 firewall suite.
Remember, NEVER leave your system wide open, and always use a firewall, unless you're sure of the consequences.
After all, registration numbers ended the concept of motor car anonymity, and most people would agree that the advantages far outweigh the disadvantages.
Where will the thousands of home routers tunnel to?
Someone knows what ip adresses in IPv6 are reserved for private use? In IPv4, it's 10.0.0.0 -10.255.255.255, 172.16.0.0 - 172.31.255.255, 192.168.0.0 - 192.168.255.255. Are these the same just translated in IPv6 or have these IP adress ranges been extended (would be logical, since there are more adresses available)? Or are there just no private ip adresses anymore, i don't hope so *g*?
Microsoft wrote a similar rant; hopefully the equipment vendors will get with the program.
6to4 is simpler and more efficient.
This was solved years ago: Privacy Extensions for Stateless Address Autoconfiguration in IPv6.
Well, you do have to discount all of the reserved ranges, among them 2001::/32, ::/128, F::/120, etc.
IPv6 needs to stay in the can until we can figure out a way to solve the spam problem. Right now, RBLs are the most effective method of stopping spam. If IPv6 rolls out, spammers will have exponentially more address space from which to operate and the ensuing spam problem will make what we have now look trivial.
A prerequisite for the rollout of IPv6 must be law enforcement getting off their asses and demonstrating that spammers will get busted for their illegal activities. Otherwise it will take 20+ years to ID and block IPv6 rogue IP space.
I'll tell you when IPv6 will be in trouble of running out of addresses. When every lame post on slashdot has an IP address.
aw come on guys! IPV6 has been *DEAD* since the day it was created!
y'know you coulda had a v8! IPV8 that is...
so lets get with the problem and stop using useless junk like ipv6, and start using something that works, seemlessly, like ipv8.
yep, could'a had a v8! www.ipv8.org (obligatory link!)
heh
Its not the lack of addresses, IANA still has 2/3rds of IPv4 addresses reserved.
See here
I'm told the reason is problems routing those addresses, i.e. that to assign them would increase the size of the routing tables on the backbone routers with the associated slow-down of processing.
I don't get why we can't just use the AS system to handle this though, the routers don't all need to know the entire routing table, just a CIDR route for a bunch of associated classes.
You may have more addresses, but addresses are chosen based on how efficient you can route packets to those addresses (more local information, less global knowledge about routes).
IPv6 (as IPv4) is also designed with the idea that addresses are somewhat related to physical location, you cannot choose arbitrary addresses, there isn't an easy way to provide the IP equivalent of "number portability" among providers.
Spam is a side-effect of the origins of the internet, when it was a network of peers, where everyone was the same (universities, mostly).
Trust was the primary asset, and email was designed without concerns about anonymity nor security (in the beggining, they all knew each other)
Now the network has become global, millions of people use it everyday, and we lost the trust, we have firewalls, spam checkers, complex authentication mechanisms, etc.
We have to find a way to re-establish the trust (maybe through better protocolos and infrastructure), but until then, all sorts of abuse will continue to be commonplace.
they would quietly pull out IPv6 as well. Seems like he's the only major IPv6 proponent at this point.
have a sense of humor, that was pretty funny
I've heard it expressed as 100,000,000 (one hundred million) addresses per square *meter* of land area.
My favorate expression is ip addressing for carpet fibers.
eric
I have a small ISP and I'm thinking about switching to IPv6.
I'm running FreeBSD servers, Linux access points, D-Link bridges (CPE), and most of my customers are using MS Windows 98/XP. I assign IP's via DHCP. I'm using NoCatAuth for logins. I'm thinking about installing IPSec, PPTP, and PPPoE at some point.
How much work is it to switch to IPv6? Will all my hardware support it? Will it work on WiFi? Any problems with NoCat? Any problems with MS Windows?
The above is not worth reading.
Perhaps we will get to the point where the want to be anonymous is no longer required.
thank God the internet isn't a human right.
Let's assume you have the IPv4 class-A network 45.x.x.x. Its netmask is therefore 255.255.255.0.
...
I meant 255.0.0.0 of course
Max
You might send email to your professor, employer or other potential adversary. They then scan USENET or SlashDot for your MAC substring. Searches run both ways.
Resetting MAC might not help if your ISP adds a UID string or grants access by MAC.
> I like how they said that it will run along side
> IPv4 for 20 years to get rid of the bugs
Those bugs being the bugs in IPv4. One would hope
to be rid of IPv4 sooner than that, but some
coffee makers might last that long, especially
the (ahem) homebrew models.
-I like my women like I like my tea: green-
20 years to get rid of the bugs.
It should be working by time Duke Nukem Forever Online is released.
---
Lousy rotten karmic retribution.
Specifically, we'd be looking at giving every electronic device in an entire household its own IP address... no problem there, but there is the simple fact that by and large there is no compelling need to access a vast majority of those systems from outside your own home.
The solution? Use private IP addresses for many of the appliances within your home and put them behind a NAT that holes can be punched in as required for access from the outside, should such access be needed.
Doing this simultaneously ensures that NAT sales don't have to suffer as a result of IPv6 implementation and also prevents the rapid polution of global IPv6 address space. It's win-win for everybody.
File under 'M' for 'Manic ranting'
im more scared of the Denial of Poo attack
I remember reading somewhere a proposal that IPv6 had a sufficiently large address space that you could allocate yourself an address to use just during the duration of a single connection, then throw it away when you were done. Depending on how this is done, it could add some anonymity to the connection process. Does anyone have a link to this information?
On the other hand, some of the docs I've read say the IPv6 address is based on your MAC. Doesn't that limit actual address space to the number of available MAC addresses (2^48?), rather than 2^128?
There is no pressing need to give every single appliance in your house its own global IPv6 address... simply use private ones, and put them behind a NAT that holes can be punched into to access them from outside, where required. Since you are the person that configures the NAT, you can control exactly what devices can be controlled from outside and how.
File under 'M' for 'Manic ranting'
The solution to this problem is to give every device a real, global IPv6 address and use a firewall to block traffic to devices that shouldn't talk to the outside world.
I'm sure it's far too late for this now, but what would it take for IPv6 addresses to be assigned geographically? Then, by extension, it'd be amazing if we could just reference an IP Address by the bits that are different. IE: if we're geographically close to the piece of equipment we want to reach, we would only have to reference the last few segments.
That would rock, for sure!
The network that Kansas Universities connect to for service (KanREN Inc.) fully implemented v6 months back. Native IPv6 services are provided to each University and throughout the statewide backbone, although I admit I don't know how the Universities handle it once you cross the border router and look at the campus network. This move by ICANN will make it easier for us to implement DNS for the v6 space.
"Who would manage it and who would police it? "
The who part for managing it is whomever the various governments order and/or authorize to do it. The who part for "policing" is in the quote, the "police". Netcops in some fashion already exist, it will be just a furtherance of those efforts in different directions, all towards government=more control, you as joe surfer=less control. Just the way it's gonna shake out.
All governments are dictatorial/despotic to varying degrees(gasp, indignant protests, oh no MY government XYZ isn't...), and the trend is for this to continue, and for there to be transnational cooperation. All governments have a vested interest in command/control/surveillence of their serfs and subjects, so this will eventually happen.
We are still in a semi wild wild west version of the net, but it isn't going to last very long and you can see it daily. P2P will be the next major stifling efforts, you can smell that coming.
It will be heavily regulated in the semi near future, because all governments want it, and most of big business wants it, and it's incresingly clear there is less and less distinction between big buisnes and big government, so it's gonna happen.
..not shy about it neither. OK, so we have this new addressing system. How does joe casual computer user go about using this new system then? Is it automagical, or what? Does it depend on your ISP and all the websites out there that are IPv4 now, or what? what do we have to do now, what's the next step?
I admit, I do not "get it" on this other than there's potentially enough addresses out there for most things now..
Linksys is already on this to some extent, since they (and NetGear and others) also sell other, similar products, which do things like add network storage to the home network (in the form of a hard drive with a really simple embedded file server), and stand-alone print servers. What you're probably looking at is a situation where Linksys isn't in the business of selling "routers" per se, but where they're in the business of selling "consumer networking appliances," where those do other things than just a simple NAT router.
For example, to expand on your idea, imagine an appliance (which would look suspiciously like what you're suggesting Linksys do) which would allow users to connect to their home machines, no matter where they are in the world, and would block other people. A lot of people would be seriously interested in that, and it's not a very far stretch from what you're suggesting; just an IPv6 connection for the home machines and a firewall with some form of authentication, with something like DynDNS to do the IPv6 lookup.
Then start thinking of things that you can do with a world-wide lookupable machine (the extension of the previous idea). Why not allow your DVR access from the rest of the world? Why not sell a box which will just stream TV so that you can watch whatever's on at home? What about nanny-cams? Once you sell people on the concept that you can safely have something on your home network accessible from the rest of the world, Joe Consumer will start to buy a lot more of those things, many of which are made by the same people whose router sales would be limited.
That there is an IPv6 Article right after a Doom 3 article. All we need now is a Duke Nukem article and the trifecta will be complete.
(B) + (D) + (B) + (D) = (K) + (&)
A6 is dead. For many good reasons.
Can't quite recall which! Roll on 1990.
They have added "new technology"? What about? Storing IPv6 in DNS records? I thought that was already available. Not from ICANN mind you. We'll put it down to scrappy journalism. The reporter probably would not know an IP address if he stepped on it. Um.
/. going to get IPv6 and xhtml/css2? I wonder.
When is
I can't even make two IPv6 hosts with statically configured addresses talk to each other on my home network...and I'm by no means a new person to networking.
/48 from freenet6.net running to a Windows 2003 server. But that's where it ends..........I have no connectivity other than an address.
I've got an IPv6 tunnel and a
The 2K3 box won't route IPv6 for the rest of my network...it can't even find a route to the host whose last digit is only one digit higher, on the same subnet.
I'm not a happy camper.
The recommendation, for all users of IPv6, including home users, is a /48. Fortunately, they've given you enough address space to get around their stingyness. You'd be stuck if they'd given you a /128.
RFC 3177 - IAB/IESG Recommendations on IPv6 Address Allocations to Sites
The Internet's nature is peer to peer - 20050301_cs_profs.pdf
If Mac or IP was bound to a card and required identity it would be easier then spoofing addresses.
I could see it now, racks with tons of NICs and the spammers randomly registering the MAC or IP with EEPROM.
Would make anonimity more prevelant, and in direct hands on control no?
*carrys boxes of nics home from the swapmeet*
my real point is that getting them to turn on windows' built-in NAT routing is enough of a challenge (especially noteable now that wireless is so popular- no need for extra cards), they already go out and buy seperate NAT routers. I find it extraordinarily odd that Linksys and the like havent been buying up millions in ads telling people that they need to install firewalls NOW after the more recent nasties. With enough initial advertising, the fear would never go away.
-- 'The' Lord and Master Bitman On High, Master Of All
All we'll do is start up another network.
IPv6 addresses some real specific needs beyond just giving us more addresses:
An nobody here seems to even be talking about how the addressing scheme actually works (the 3 address types (Local Link, Site Local, and Aggregatable Global addresses) for example), how MAC addresses are actually used, or how the option for anonymous addressing (which isn't perfect, but does exist) can partially address some of the privacy concerns.
Come on, folks - let google be your friend!
** The opinions expressed here are my own, and do not reflect those of my employers - past, present, or future**
"Simplified routing tables through Route Sggregation"
oops! I meant "Route Aggregation" - apologies, I seem to have a caffeine deficiency in my diet this morning.
** The opinions expressed here are my own, and do not reflect those of my employers - past, present, or future**
But what of the residential-service routers (especially cable) that have to worry about Theft-of-Service?