The Next Net

Qa32 wrote to give a heads up on a BBC article discussing the IETF's plans for the future, including information on VoIP, IPv6, and security concerns. From the article: "Given the net was designed for the whole community, it has done well to reach millions. If you want to reach the whole population, you have to make sure it can scale up."

Mass media distribution

[thundercatslair]

IPv6 is nothing, it was just created because we are running out of IP addresses quickly. The future as I see it is mass distribution of media. Instead of running out and buying movies you could download the whole dvd and watch that.

Re:Mass media distribution

[mboverload]

First we need download speeds that are even close to our Asian neighbors.

It is pathetic that even poor people in South Korea have lines for 20 bucks a month at 25 mbps. America the leader in tech? I beg to differ.

Re:Mass media distribution

[arturov]

South Korea is also just a *teensy* bit smaller than the US. The infrastructure costs required to wire all the areas in the US with 25 Mbps speeds would be enormous. Also, just how many people can afford 20USD/month in South Korea? Does this include "the poor people"? Quit trying to compare two vastly different situations just to bash the US.

Re:Mass media distribution

[Doc+Ruby]

These comparisons are normalized to scale. Why doesn't *anywhere* in the US, like a Korea-sized area around NYC encompassing 50M people, get 25bps for $20? Where lots more people have $20:mo? Could it be that the situations are vastly different in the agressiveness with which the respective telcos are pursuing innovation? Or are you saying that Koreans are somehow innately more bandwidth-hungry than Americans?

Re:Mass media distribution

[cartzworth]

Verizon just laid fiber in my neighborhood (suburban Pennsylvania) and are rolling out 15mbps for $40/month. Not bad.

Re:Mass media distribution

[pmjordan]

Korea is a lot more densely populated than the USA, or most of the western world, as far as I know. It makes a big difference on returns if the infrastructure you're laying down is reaching 10 times as many people per unit length.

That doesn't explain the excellent, although probably not quite as good, internet connectivity in Sweden and the Netherlands.

~phil

Re:Mass media distribution

[arturov]

A step in the right direction, but the speed is still quite low compared to other more developed countries.

Only if you gauge a country's level of development by starcraft player density.

Re:Mass media distribution

[Hogwash+McFly]

Quit trying to compare two vastly different situations just to bash the US

You know, not every negative observation about the United States is an attempt to jump on the 'US Bashing' bandwagon.

Re:Mass media distribution

[Doc+Ruby]

We've subsidized the telcos and the broadband buildout in the US every way possible. We should demand the return on our investment. Instead we're resigned to feeding our monopolies and losing our leadership.

Re:Mass media distribution

[Doc+Ruby]

What about the Korea-sized swath from DC, through Philly and NYC, to Boston? It's pretty densely populated with rich media consumers. Why not just in NYC, where only 10% of the fiber is even lit, and we're among the richest, hungriest media consumers on the planet? Could it be that broadband providers are limited by their bizmodel, defined by the regulations they lobby incessantly to retain? That their lazy management is more interested in the low-hanging fruit of overcharging for pay-per-view of the movies they own, rather than opening up the infrastructure to competition from every shop with real broadband, or P2P?

Re:Mass media distribution

[sonoluminescence]

South Koreans are not all that poor.

Every post seems to be suggesting that south korean is some third world country, with the economic strength of Uganda when the reality is that their GDP per capita is roughly equivalent to that of lesser EU nations.

Interesting quote

[Anonymous+Brave+Guy]

From part-way down TFA:

"The top priority is to ensure that the standards that make the net work, are open and free for anyone to use and work with."

Interesting for many here that the new guy at the head of the IETF seems to give this issue such emphasis.

Re:Interesting quote

"Interesting for many here that the new guy at the head of the IETF seems to give this issue such emphasis."

You mean just like the standards that make the existing net work?

Actually, my biggest fear is VoIP - not directly, but the flak it will take from the telcos. I think we'll see some serious posturing from them as VoIP as a core feature on a internet upgrade would destroy their revenue model, not partly, but totally. They won't own the network, and they don't make the phones, they'll become a redundant middleman...

Just make sure...

[advocate_one]

you keep patents out of the standards... Microsoft have been trying to stick one in for the basic premises of IPv6... and surprise, surprise... they were also involved in the standards committee...

Those familiar with the meetings of the IETF as the committee hammered out the IPv6 IP address discovery system told eWEEK.com that Microsoft was actively participating in those discussions back in late 1997 and early 1998. Microsoft left the meetings and filed a patent for work on which there already existed numerous RFCs (requests for consensus)--basically the legislation that runs the Internet.

Re:Just make sure...

[andreyw]

RFC stands for "Requests for Comments," btw.

We need help from big players

[michelcultivo]

This history of IPv6 will never be introduced on our planet when the big players (ISP, Datacenters) and universities start using our their network. Someday I asked my Internet provider when will they start using IPv6 on dial-up networks, imagine what response did I got? "IPv6??? What is it"

Dosen't the internet scale?

[blanks]

"If you want to reach the whole population, you have to make sure it can scale up."

I thought with the current schema the internet uses it was allways setup to scale and allow for redundency, where one section can do down and a new one can take place. Or new networks could easily be added, and expanded off of.

Even new technologys like P2P and torrent etc were able to come out, still functioning correctly with the internet with no changes.

Maybe they mean the ability for the technology to scale up, meaning situations like the IPv6 would not be such a consern. But then again IPv6 is a huge change to the entire structure of how the internet functions.

Re:Dosen't the internet scale?

from my understanding, IPv6 isn't THAT dramatic of a change from IPv4. It's all in the addressing. Your NIC doesn't really CARE what address it has. For that matter a router shouldn't care what is really going on with the addresses other than "This packet goes here and that packet goes there". IPv6 makes that a little different but not totaly alien.

There will still be subnet masks and that will still be what a router uses to move packets from one network to another. Once a packet is on the "correct" network its all about the MAC address from that point on.

This whole bit about scaling up is addressing. What you really need to worry about is some sort of DRM trickery but this guys sounds on the level.

Re:Dosen't the internet scale?

[whathappenedtomonday]

If you know the IP of the web sites you want to visit, you can still access them.

now I finally have a use for the mountains of dns cache printouts that I keep in the basement! lucky me...so please everyone go DoS DNS. I don't care, because I have a workaround!

An observation on IPv6

[wowbagger]

Here's a little observation about IPv6 - very few major web sites have an IPv6 address.

Try it yourselve with dig or nslookup - try looking up AAAA records for any of the sites you visit, and see how many would be accessible via IPv6.

For example, try

dig slashdot.org aaaa

Re:An observation on IPv6

[jrcamp]

Please read about Transition Mechanisms for IPv6.

This is not an all or nothing thing. We do not have to turn out the lights on IPv4 before we can start utilizing IPv6.

Re:An observation on IPv6

[WeblionX]

I'm using Windows you insensitive clod!

Re:An observation on IPv6

[wowbagger]

True, IPv4 addresses are a subset of the IPv6 address space.

However, if the site in question does not support IPv6 packet formats, then an IPv6-only host would not be able to contact the site, as the site would not be able to form the IPv6 packets back to the requesting host.

So either the requesting host would have to have an IPv4 address available to it (either directly or via NAT), or the requesting host would be unable to access the site.

And the simplest way a web site can advertise its ability to support IPv6 is to have a AAAA record in DNS.

Re:An observation on IPv6

It's expected that transition stages (different people will pass through these at different rates according to their needs & budgets) will include

1. Most systems having IPv4 only, IPv4 is used for all internal & external services

2. Systems have IPv4 and IPv6, but IPv4 is used for internal services, some IPv6 external services are used without specific engineering (this is what you get if you set up a modern OS X, Linux or beta Windows these days by default)

3. Internal services become available on IPv6 (often a single config line or radio button)

4. Most systems have IPv4 + IPv6, a few are IPv6 only due to address constraints etc. Internal services are mostly used from IPv6. External services are a mixture, with some essential services translated (e.g. by a web proxy) for IPv6-only machines

5. Most systems have IPv6 only, internal services are IPv6 only, some external services remain IPv4, translated either locally or remotely.

The last few phases resemble what happened with green screen terminals. A lot of people thought these terminals couldn't be removed from desks for a century or so, but in fact they were replaced firstly by emulators running on PCs, and then by a web frontend running on a remote server. The software at the backend may still believe in VT100s for as long as it likes.

--

IPv6 wipes out unsolicited IP traffic. With subnets containing 2 ** 64 instead of 2 ** 8 or less hosts, the chance of a randomly generated IPv6 address being "live" is virtually nill. Therefore worms and other malware that "scan" addresses at random will die out on the IPv6 Internet. That's just one of many hidden advantages to upgrading.

Re:IPv6 Not Enough?

[Anonymous+Brave+Guy]

I've read that people plan on embedding ips on everything from lights and toasters to make them work in concert so if every device were to need an ip address I don't think that IPv6 would hold up.

I can't remember which is greater, the number of available IPv6 addresses or the estimated total number of atoms in the universe, but either way you can rest assured that there will be more than enough IPv6 addresses to handle any foreseeable addressing needs we're going to have any time soon, even if everyone winds up with dozens of personal IP-assigned devices.

Wow! think of all them IP addresses.

[pg110404]

I believe IPv6 has something like 50 addresses for every square foot of land on the earth.

That's amazing. Soon we'll be able to wire up our entire house and everything from the fridge to the alarmclock would be accessible from the internet.

I only hope if it gets to that, nobody can hack into my microwave when I'm cooking my dinner, or someone hacking into my alarm clock and messes with the settings.

If microsoft does good on their desire to control it all, they'd better finally have some reasonable measure of security. I wouldn't want to wake up to find out some low life got to my hot water heater and turned it off because of a buffer overflow vulnerability.

Re:Wow! think of all them IP addresses.

[digitalsushi]

from http://engr.smu.edu/~tchen/eets7304_spring05/hw5_s oln.pdf

Problem 8. (IPv6) (a) Given that IPv6 addresses are 128 bits, calculate the total number of possible IPv6 addresses. (b) Calculate the surface area of the earth in square feet. Consider the radius of the earth as 3,963 miles, and one mile is 5280 feet (the surface area is 4ðr2). (c) Calculate the number of IPv6 addresses per square foot of earth surface. (d) Repeat the same calculations for IPv4; how many IPv4 addresses per square foot?(a) 2128= 3.4 x 1038number of IPv6 addresses. (b) The surface area of the earth is 4ðr2where the radius r = 3,963 miles. The surface area turns out to be 1.97 x 108square miles = 5.5 x 10152 square feet. (c) There would be 3.4 x 1038/5.5 x 1015= 6.2 x 1022IPv6 addresses per square foot of earth surface. (d) 232= 4.3 x 109number of IPv4 addresses. Divided by the surface area of the earth, there would be 4.3 x 109/5.5 x 1015= 7.8 x 10-7IPv4 addresses per square foot.3

Re:Wow! think of all them IP addresses.

[asdfghjklqwertyuiop]

NAT is no substitute for real address space. The only reason so many people use it today is because real address space is too limited.

Re:Wow! think of all them IP addresses.

[pg110404]

50 addresses for every square foot

I stand corrected. It's been years since I even given IPv6 even a first though, I forgot all about it. The 50 addresses statement would be true if IPv6 had a 6 byte address (48 bits), not the actual 128 bits (ipv4 is coincidentally 4 bytes, ipv6 is version 6, not 6 bytes long, and as I've discovered, the version and bytes in IP addresses are not related).

So doing the math (this time entire earth surface area, not just land mass, as per equator diameter with something more manageable like square millimeters):

IPv6 addresses = 2^128 = 3.4 * 10^38
earth diameter = 12,760 km
radius = 6380km = 6380000000 mm
surface area = 4 * pi * r^2 = 5.1 * 10^20 sqr mm
address density = addresses / sqr mm = 6.7 * 10^ 17

Re: Wow! think of all them IP addresses.

[gidds]

I believe IPv6 has something like 50 addresses for every square foot of land on the earth.

Actually, I believe the figure's much bigger - something like 6.2 x 10^22. (My own calculation, confirmed by one web page, though others give widely varying results. That's based on a figure of 197 million square miles, incl. sea.)

But that's not the point, because the addresses aren't evenly spread. Once you allocate some of the most significant values to various organisation, protocols, or special values, then you start to lose a good number of those. And if you split the rest hierarchically (by country/region, ISP/organisation, and/or topology), then you'll find large numbers becoming unavailable.

Of course, there's such a big number to start with that that'll still leave plenty for everyone. But the number-per-square-foot value doesn't necessarily tell you very much.

Re:Wow! think of all them IP addresses.

[asdfghjklqwertyuiop]

Fine, semantics. The packet is unmodified, so its address matches to none of the TCP/IP stacks on the LAN, so it gets dropped by every PC. Not rewriting an address is effectively dropping it (unless you somehow had a local machine with an IP identical to that of your NAT box on the Internet)

You are assuming that every packet that comes down your internet connection will have a destination IP address matching your router's public IP address. That is an unwise assumption to make for at least two reasons:

1. You are effectively placing the security of your LAN into the hands of your ISP.

2. Many broadband connections present subsribers with an ethernet interface, which from their perspective makes all subscribers in the area look like they're on one big ethernet. In this situation other users can simply add a route to your LAN's address via your outside IP address and viola, full access to your LAN.

An easier way?

[TimeTraveler1884]

Given the net was designed for the whole community, it has done well to reach millions. If you want to reach the whole population, you have to make sure it can scale up.

Wouldn't it just be easier to lower the population to millions rather than changing current infrastructure?

Re:An easier way?

[UlfGabe]

Nuclear War!!!
Terrorists!
MAD BEEF!
CHICKEN FLU!
OBESITY and AIDS!!

just saying what everyones thinking.

Re:IPv6 Not Enough?

[mboverload]

Remember alot of those IP's will be within a private network. I doubt they will be handing out static IPs to lightbulbs any time soon.

OMG HE MADE TEH AL GORE FUNNY!!1eleven

[daniil]

Seriously, mate, this joke is so old it's about time it was put out of its misery (as it's no longer funny) and bury it under three miles of solid rock (otherwise, the stench would be unbearable).

Uh-huh!

[The-Bus]

"If you want to reach the whole population, you have to make sure it can scale up."

What that means to you, MBAs, is that it sounds like by i-deploying its cross-market and granular mix of best-of-breed technologies for today's e-enterprise, the interweb will finally be scalable!

2.1?

[Doc+Ruby]

Whatever happened to Internet2? Was it just another Bubble scam, in reverse? Just a way for academics to rip off government and investors with handwaving promises of "Next Generation" apps, from the magic cloud that birthed the first Internet (but without the genius and visionaries)? Internet2 has been in "startup" phase for almost a decade - where's the return? And if it's just percolating beneath the surface of these announcements, why isn't my taxpayer investment getting the credit? For starters, where's the massively scalable multicast infrastucture that would enable all these hypermultimedia apps that everyone wants?

Re:2.1?

[forkazoo]

Uhhh... Internet2 is a private academic network. What exactly were you expecting from it, except a set of high speed data links between research universities? It was never intended for the average person to get a DSL connection to Internet2, because all the sites connected to Internet2 also have connections to the Internet, so there would be no benefit. The advantage is that the big universities have a dedicated network, without napster and all that crap bogging it down.

Re:2.1?

[Doc+Ruby]

What's the billing problem? Encrypt the packets with a different private key every 5 seconds, and require each listener to get new copies of the public keys, by subscription in 10-packs, distributed randomly in time. The keybuffers are not multicast, but they're millions of times smaller than the encrypted media, so the smaller-scale unicast model works. If I can think of that in 30 seconds, why haven't the providers thought of it yet? And why do incumbent corporate providers have an advantage, if Internet2 is publicly funded?

Re:2.1?

[BigPappa]

One of the biggest things that we've used it for is something that needs low latency and big pipes, videoconferencing. We have had classes that have students at 3-4 different universities with the profs at each contributing to the class, even in the same session. These were the high quality 5MB/s streams times the number of universities. That's ~20MB going back and forth with all the overhead that that would have. We needed Internet2's pipes to do that.

It's also used to do regular Polycom conferences without the latency you see with busy Internet1 connections. Our I1 pipes get pretty clogged in the afternoon, and it's a mess to try to keep the connection, even with QoS. We've had conferences with others from Hawaii to New York over I2 with minimal dropouts or frame rate problems. Without the I2 pipe, these meetings would not have been possible, or at the least uncomfortable to be in. And it saves so much in travel time and money.

Heck, even the MCU that we use (to allow more than 2 units to talk) is in another state.

Another thing that I2 has done is start linking K-12 schools together as well. Many states use the same network for higher ed and K-12. So not only are the universities getting the benefits, but so are regular elementary and secondary schools that are using the same pipes.

Re:2.1?

[BigPappa]

Oh yeah, lots of it. One of the things is IPv6 and multicast. The Abilene backbone (one of the I2's biggest) is entirely v6. The knowledge there on how it works on a grander scale is helping to tune and shape the works that come out of places like Cisco and Nortel. Thier code gets production tested first on Abilene and then to the big networks. We also get the new big routers to test with usually before anybody else does. If you go look at Abilene's website, you can see from the network graphic that it's pretty busy.

Interestingly enough there seems to be a moving away from expensive ATM connectors to cheaper 10GigE connections. Our state network has just converted the backbone to GigE, and I expect that our connection to Abilene will change to that soon as well. I think ATM for medium length hauls will die out, only to be used on extra long hauls like across contries and oceans. I can see the big networks doing this to to cut down on costs and brainpower. ATM is just too complicated.

Re:IPv6 Not Enough?

Number of addresses:
IPv4 : 4 × 10^9
IPv6 : 3.4 × 10^38

That means about 4.3 x 10^20 addresses per sqr inch on Earth's surface. So, yes, it will be enough, even for whatever embedding plans people might have.

Re:IPv6 Not Enough?

[MightyMartian]

From what I can see, what's held up IPv6 adoption is the NAT router, and IPTables/Netfilter in particular. These IPTables guys have managed to come up with hacks for many of the difficult protocols, so that even cranky beasts like MSN Messenger are fully functional. NAT has its problems, of course, and at some point we're going to have to dump IP4, but I think it's longer off then some hope.

Re:IPv6 Not Enough?

[Bishop]

There are more ipv6 addresses then atoms in your body. My back of hand calculations show 4*10^10 addresses per atom.

mass of a person: 80kg

molecular mass of water: 18g/mole

approximate moles of water in body: 2.7e27 = 80e3 / 18 * 6.03e23

approximate atoms in body: 8e27 = 2.7e27 * 3

address in ipv6: 3.4e38

approximate addresses per atom: 4e10 = 3.4e38 / 8e27

The mass of water was used as water is a significant portion of the body.

More useless IPv6 calculations

[sahonen]

According to my calculations, IPv6 allows us:

Over 300 million IP addresses per cubic millimeter of the Earth.
One IP address for every 5 cubic meters of the entire solar system within the sphere defined by the aphelion of the orbit of Pluto.
180,000 IP addresses per cubic light year for the estimated size of the entire universe.

Yup, I think we have enough.

Re:More useless IPv6 calculations

[Jesus_666]

We'll use NAT.

NAT has other purposes

[dpilot]

NAT is the ISPs way of keeping its subscribers in line, and acting as consumers rather than citizens. Given the TOS of my ISP, it just doesn't matter whether I get NATted, or not. Anything I could do that I can't do behind NAT isn't allowed.

Re:IPv6 is a hack

[irix]

IANA hasn't been handing out class A blocks "like tap water" for a long time. Sure, some organizations have too many addresses, but these were mainly organizations that pioneered the IP network and were handed these netblocks very early on.

As an AC pointed out in an earlier response, NAT is the hack, not IPv6. It breaks end-to-end connectivity, and you have to jump through lots of hoops to get many protocols to work correctly. NAT was a measure that slowed the need for IPv6, but it didn't remove it.

Re:no to flash!

[Minna+Kirai]

don't be silly, anyway they're talking about the net, not the web, ie, the infrastructure, not format's of files that could be transfered over it.

No. IETF spends more of their time on file content than byte-pushing "infrastructure". For example, the HTML format is IETF RFC 1866. Any file that's mainly viewed over the internet is potential IETF fodder.

(Flash is too old and too intentionally openness-hostile to ever become an IETF standard, of course. But it'd be good if it could be replaced by something which is a standard, maybe SVG)

Re:Mind you...

[pHDNgell]

IPv4 only supports 4bil address in a given addressible domain. With NAT, things get more interesting, and to be honest, is the BEST thing that has happened to computer security ever. People whine about NAT, but it's poor protocols that cause NAT to break things (FTP, RTSP and SIP come to mind). Otherwise NAT solves the issues.

NAT has in no way improved security. You're confusing firewalls with NAT. Firewalls would be just as effective without NAT.

Since you seem to be so informed, though, how exactly are you working to fix these ``poor protocols'' that are preventing me from doing video chat with my daughter or managing her computer? I cannot ssh, remote desktop, or ichat AV because her machine is behind a NAT outside of her control.

How does this benefit her, the customer of this service? What does it do to improve security beyond the built-in firewall or any given add-on stateful firewall?