How Things Will Change Under IPv6

Da Massive writes "IPv6 Forum leader Latif Ladid provides an insight into the workings of IPv6. He also talks about how peer-to-peer file serving as we know it today will be redundant with the newer protocol." From the article: "Q: What is the most significant benefit that IPv6 offers the world? A: Global connectivity. Currently we have less than 50 percent world-wide Internet penetration, and we have used most of the address space. If you look at the Western world, we have more than 50 percent penetration. In total we have close to a billion people connected to the Internet. So it is a false perception that we have full Internet penetration. We have six billion people on the planet. When the Internet protocol was designed back in 1980 there were 4.3 billion address spaces; it was already insufficient for the population. By 2050 we will be nearly 10 billion people. But there are not only people. There are things. Billions and billions of devices that will service these people."

But when?

How long will a complete transition to IPV6 take? Many many years IMO, if it ever happens at all. None of the firms I know of or work with have even started looking into migrating yet. Hell they are'nt even talking about it.

Re:But when?

[aonaran]

"How long will a complete transition to IPV6 take? Many many years IMO, if it ever happens at all. None of the firms I know of or work with have even started looking into migrating yet. Hell they are'nt even talking about it."

This is the thing that bothers me, it looks like y2k all over again. No body thinks it's a problem until there's a last minute scramble to get the issue resolved.

The only difference is this time around there's no clearly defined cutoff date and when the transition happens it'll probably be spread out over months or years as people start to clue in that they are missing half the internet.

Most of the technological hurdles in connectivity have been overcome, even home users can upgrade their linksys routers in 5 minutes or so to take advantage of IPv6 but for some reason ISPs are holding back and because of that businesses are holding back. Everyone is waiting for somone else to make the first move.

Re:But when?

[Undertaker43017]

The problem is mostly social. You now have millions of people on the Internet that barely understand what it is, and while from a technical persons point of view IPv6 is "no big deal", from this groups point of view this is a "big scary", and something they wouldn't think of doing on their own. So I suspect the majority of ISP's have realized this and are not ready for the customer service nightmare that changing would cause. Sure you can upgrade your Linksys to handle IPv6, but how many people even know the device CAN be upgraded at all, let alone know how to do it...

Re:But when?

[Scott+Wunsch]

Longhorn has an IPv6 stack built in, find your favourite Linux distro and demand an IPv6 stack in that.

What Linux distribution doesn't have an IPv6 stack built in these days?

And for that matter, Windows users don't have to wait for Longhorn either. Windows XP has an IPv6 stack built in too: How to install IPv6

Re:But when?

[jrockway]

Doesn't qmail need a non-DJB patch to use IPv6? I enjoy Bernstein's writing, but in this case, he is doing a whole lot of talking and not a whole lot of acting.

Personally, my entire home network is IPv6. If people don't want to use IPv6, that's fine with me. My ISP charges me $10/month for static IPs, but with IPv6, I got 2^64 of them for free. 2^64!!! That's 2^32 more than all the IPv4 addresses in existence.

I think it's easy to see why people don't want IPv6. Without artificial scarcity, they can't gouge you for IP addresses.

Re:But when?

[FireFury03]

But every time you talk to someone outside that network, you'll be using IPv4. Who is going to be the first one to switch to the IPv6 internet? No-one. Everyone needs to change at once. And I think that's why many say it's just not going to happen. Why don't you start using an external IPv6 address and get back to me.

I'm afraid you're talking crap - I use IPv6 on my internal network *and* over the Internet, it coexists quite happilly with IPv4. Enabling IPv6 support on a system does _not_ require leaving the IPv4 network. If you have both protocols enabled then IPv6 will be preferred when it is available on both ends (since the DNS lookup you make to find the remote server's address will return both A and AAAA records) but if one end doesn't do IPv6 then the IPv4 address will be used.

The problem here is an economic one, not a technological one:
1. Why should the content provider invest in rolling out IPv6 addresses to their servers (there is an administration cost in running an additional protocol) when 100% of their clients have IPv4 addresses (the number with IPv6 addresses is not important here if it is significantly less than 100%)
2. Why should the ISPs invest in rolling out IPv6 networks if 100% of the content on the internet is accessible over IPv4?
3. Why should the consumer grade DSL router manufacturers bother to include native IPv6 support in their hardware if the ISPs aren't going to support it?

Most of the end-users neither know nor care about IPv6, but if the ISPs provided native IPv6 connectivity, the customers' DSL routers provided IPv6 support and their OSes shipped with IPv6 enabled by default (Fedora Core does this, as does OSX... sadly XP doesn't) then the customer wouldn't need to care about it because it would just automagically work - IPv6 does autoconfiguration our of the box.

So whilest there are economic reasons why businesses won't be inclined to change without everyone else changing, there is no technical reason why anyone can't support IPv6 without everyone else changing.

Welcome Overlords

[j_kenpo]

"There are things. Billions and billions of devices that will service these people"

I for one welcome our new.... thingy overlords...

untrue

So it is a false perception that we have full Internet penetration.

This is completely untrue! There is lots of full penetration on the internet.

"Billions and billions"

[FirienFirien]

On the comment "Billions and billions of devices that will serve these people", it seems to be unmentioned that (random estimate, not researched in any way) half of them will not be directly hooked into the interweb. Many of those are intended to be that way, since you want your layers of security, and that's why we have however many thousands of addresses in the range 10.0.0.[0-256]; technically they're using the same IP, but it doesn't matter because that IP is kept internally, and not in contact with the web.

IPv4 does not have enough numbers to give every single device its own unique IP. On the flip side... if we were locked into the system, it would still be workable.

Re:"Billions and billions"

however many thousands of addresses in the range 10.0.0.[0-256]

Sorry, but I have to completely discount technical analysis and discussion from anyone who writes 2^24 as "however many thousands" when discussing a technical subject in a technical forum. Nothing personal, mind you, but it demonstrates either (a) a lack of basic math skills which are essential, even reflexive, to anyone really knowledgeable in this space or (b) a lack of attention to detail. In either case, your analysis is of much less value given that there are people around who actually do understand the topic.

Oh, penetration

[jfengel]

Q: Besides the obvious thing about address space, what other advantages does it have?

A: Penetration! Because we don't have everybody connected yet!

Q: And how does IPv6 increase penetration? Does it build wires to people's houses or make provide satellite dishes to third-world countries?

A: No, but it does make sure we have enough addresses once they have some money to buy the actual hardware stuff!

Look, I know that eventually we're going to have to transition off IPv4 because of the address space issues, and that we might as well start now, but articles like this make it more like a marketing stunt to sell new hardware RIGHT NOW.

IPv6 Changes

[mrtroy]

What people dont seem to realize is that IPv6 is not only about adding more addresses.

They also improve the packet structure (by doing things like removing the fragmentation flag)

And we should be looking at making wireless roaming easier (consider forwarding mechanisms when changing WAP's)

But more addresses is a key benefit. And there is no real harm, just the cost of transition which can be minimized due to the backwards compatibility provided through tunneling, etc. So if everyone just starts installing IPv6 hardware, everything is happy. Why is this issue being rehashed?

Re:IPv6 Changes

[silas_moeckel]

And the ISP's are asking where the profit in doing it is? There are a lot of downfalls to providers Multicast being the big one along with a whole lot of training. I do love all the people that think all of a sudden there toasters can have real IP's and NAT will go away, nothing in IPv6 says they have to give you more than one IP without paying more for it just like today.

Why don't we start today? Tunnels!

[Nichotin]

If you just want a broker that is quick to get started with, go to btexact and sign up. For those "permanent" set ups, go to (you will get a tunnel initially, but have to save uptime enough to get a subnet and such).

So, what can it be used for? Well, at the moment I do not really use it to browse the web, but I use it for reverse dns on irc (efnet, freenode and most other ircnets have ipv6 enabled servers). In other words, I can have a range of customized hosts (very handy since many friends have shell accounts here) on irc, like @doomtech.net or cust-523452.nix.net.ru. The first one is my own domain, but the second is from afraid freedns. Afraid has a huge range of public domains, which you can add AAAA and PTR records for.
After thinking up a host, please go to spamcalc, if you don't have the brains yourself to see if your host is dns spam or not. A host like doomtech.net is not dns spam, but something like i.am.god.and.i.live.in.the.cave.with.osama.bin.lad en.info is.

Sixxs and btexact have pretty exact instructions on how to set this up on a range of operating systems. With the aiccu client from sixxs, the tunnel should work behind most NAT setups as well.

Re:Why not give PEOPLE addresses?

[bhirsch]

How about if your domain name is blahblah.com, then your web server could be www.blahblah.com? It gets better: Your mail server could be mail.blahblah.com. And yes, your coffe pot could be coffeepot1.blahblah.com.

Why is NAT so bad?

[mightypenguin]

I understand that NAT is considered a hack, but isn't the fact that a device's real address is hidden a security feature for the user? Wouldn't it be that much harder for malicious users to track my internet usage? This would be especially true if I had a mobile device, since moving from one NAT system to another would make following my movements remotely more difficult. So I'd think NAT would be considered a privacy boon. The article doesn't really address this effectively. Also, since most mobile devices have limited bandwidth, I'd think that having a constantly changing IP address, or hiding behind a NAT would mean that DOS attacks against them would be more difficult. If most big mobile device ISPs like the blackberry and sidekick folks offered NAT based access in the future, I'd think that we'd be relatively safe from IPv4 address exhaustion. So stating the main reason for IPv6 being address exhaustion I think is crap. It IS very useful for other reasons though, and I think those reasons warrant it being switched to.

Re:Why is NAT so bad?

[smbarbour]

NAT is the one of the best "hack" that has ever been made for networks. I don't want to have every computer publicly accessible. Is there NAT on IPv6? How many addresses are available for v6? Using NAT, the maximum number of connected devices (sorry for not having the figures in front of me) on IPv4 = Total # of public addresses x Total # of addresses in a class A private network (10.x.x.x).
 
According to my calculations, using Class A private NAT with each address in a Class A public network comes to: 281,474,943,156,225 available nodes. That's over 281 trillion for the utilization of 1 class A IPv4 network. There are plenty of addresses if we use them properly.

When we actually run out of numbers ....

[bizitch]

The closer we actually get to REALLY running out of IPV4 numbers - the more IPV6 will become adopted

This is known as "Market Forces" - this is a foreign concept to many but it is the reality of this situation.

When NAT becomes insuffiecient to handle the demand - IPV6 will be ready to roll. Then every man, woman, child, insect and grain of sand will have its own PUBLIC address which we can then begin to exploit - YAY!

Re:What About Private Address Space?

[WindBourne]

With IPv6, you still have private address space, if you want, so your reasoning for staying is faulty. The problem is that there is no ip space as more ppl want ip's than are available. Quite honestly, we need to move to IPv6.

Re:Why not give PEOPLE addresses?

[dslauson]

Not a terrible idea, but it assumes that end users are going to be able to figure out how to configure static IP addresses for all their devices, which is a pretty big assumption.

Plus, who would be in charge of assigning them? Would that mean that I have to register for an IP like I do for a domain name? Who's handing them out, the DMV? The Social Security office? The UN?

Also, it seems like it would be easy for hackers to mimic other people's IP address. Seems like maintenence nightmare.

Re:What About Private Address Space?

[kotj.mf]

Private address space, when used according to specification, will eliminate the need for costly conversions to a new standard.

Actually, it'll eliminate the need for costly conversions to a new standard for a period of time, after which we'll all need to upgrade anyway, when it'll be even more costly.

Ladid's main point seems to be that NAT-proponents take this kind of short-term, client/server-centric view. There's nothing wrong with client/server, but it's a significant hinderance for independent development of things like VoIP, where peer-to-peer makes far more sense.

Basically, it's not just that we're running out of address space; it's also that treating NAT like anything other than a (relatively) short-term fix ultimately hinders the development of new uses for the internets.

I don't get it

[nmg196]

Why does IPv6 make P2P any easier to implement?

Why does it remove the need for servers?

Why does it mean that we "won't need providers such as Skype anymore because we'll be able to do it all ourselves"?

I don't see how IPv6 lets you do ANY of these things. You'll still be firewalled, you'll still need servers and software vendors like Skype. In fact the only thing about IPv6 that would seem to me to help P2P is that slighly more people might end up not being NATed but that won't affect anything much.

Does this person actually know what they're talking about or are they from marketing?

Re:I don't get it

[it0]

I always understood that ipv6 has the ability to send 1 packet to mupltiple persons at once. So for example if you use bittorrent, and there are 7 people connected then you only have to send out 1 packet to reach to 6 people in stead of 6 packets with ipv4.

The rest I don't know

Re:I don't get it

[Anakron]

Why does IPv6 make P2P any easier to implement?

It allows you to make direct connections from any computer to any other computer connected to the Internet. The way it was supposed to be. I'm guessing most peer to peer applications contain a lot of code that is designed to work around NAT.

Why does it remove the need for servers?

It doesn't. Not servers in the sense we normally think of them

Why does it mean that we "won't need providers such as Skype anymore because we'll be able to do it all ourselves"?

I believe what he is referring to is the fact that Skype tries to set up a connection between two users who are both behind NAT boxes by using another computer that is not NATed. That part wouldn't be necessary. We'd still need the Skype software, though.

you'll still need [...] software vendors like Skype

Right. It's just that Skype wouldn't need to use the kinds of ugly kludges they do now to get around NATed users.

In fact the only thing about IPv6 that would seem to me to help P2P is that slighly more people might end up not being NATed

The hope is that nearly no one will have to be NATed. Please don't start that security story again. NAT is NOT about security. NAT boxes usually also perform firewall duty (and usually not very well). That's it

but that won't affect anything much

I disagree. I think it will help a great deal. Network administrators and creators of network-aware applications spend a great deal of time trying to make sure that NATed users won't see much of a difference (and it needs to be reinvented for every application). If they no longer need to spend time trying to work around such a broken concept, we can hope to see real innovation.

Re:service?

[Soybean47]

Oh, you know what they're talking about. Billions and billions of devices to "service" you. Ever increasing "penetration." What, you think this guy is wrong aobut the future of the internet? ;)

IPV6

[Zlib+pt]

In other news, a door in germany refuses to open because some script kiddie got it's IP address and crashed the door. Officials are trying their best to open the door but they suspect the door has to be rebooted.

Are this going to be the news from the future?

Why IPv6 Is Coming

[Tony]

To all o' you people asking, "What does it give me?"

It gives you nothing. You're already on the internet.

IPv6 is going to give India and China and other high-populous countries connectivity. As it is, they don't have enough IPv4 addresses even to *nat* their country, let alone to provide real services with which NATing interferes.

And that's why you and I have very little say about the adoption of IPv6. It's gonna happen, and it's gonna happen soon (say, the next 5 years, tops). Pretty soon, those of us who remember IPv4 are going to be like 3-digit /. users-- old, out-of-date, and constantly reminiscing about the old days.

Maybe I'm just a Sick Twisted Freak

[krgallagher]

When I read "But there are not only people. There are things. Billions and billions of devices that will service these people." I immediately invisioned billions of internet enabled sex toys.

Re:Why not give PEOPLE addresses?

[Mercano]

It wouldn't really be routable. There would be no way figure out which way to send the packets for a given "address." For istance, under IP4, any router that sees a packet going to any machine with an address starting with 129.22 (one of the few blocks I know off the top of my head) knows that the packet should be pushed out a pipe that heads in the general direction of Cleveland. In fact, most routers probably work off even broder rules, with (just making this up, now), all address starting with 129.17-129.32 should be pushed out towards OAR net, then OARnet would do more focused routing in house.

With "people address", there are three problems. First, no way to generalize routing rules. Secondly, there is the fact that all your stuff might not be in the same place. Most of it is at your house, but some of it is at the vacation home. Finally, there is the problem that people, unlike IP4 address, tend to move arround alot, geographically speaking. Usually, if you move from New York to LA, you get a different IP, even if you use the same national ISP. Under your scheme, the whole internet would have to be told to redirect your trafic. Yick.

Address space not the biggest feature

[jgold03]

Address space isn't why we should gloss over IPv6. Yeah, its nice that we can get rid of NAT, but the bigger deal is virtual circuits. IPv4 can't handle streaming data, keeping us from high-broadband technologies like TV-over-IP. IPv6 was designed to optimize routers for doing high-broadband transfers. That should be the biggest selling point of IPv6.

Billions and billions

[gasmonso]

"Billions and billions of devices that will service these people."

Ah yes, in the immortal words of Carl Sagan

gasmonso http://religiousfreaks.com/

Re:Mismanagement of the IPv4 address space

[mark-t]

"Period"?

Uh... no.

How about anyone that is running software that requires a peer to peer connection (and I'm not just talking about filesharing software)? And it's further worth pointing out that the only people that require such connectivity are not just the techie geekoid people. Running VoIP through NAT, for example, is a bitch and a half, and often not even possible if the end user does not have administrative rights on the NAT.

Your argument does touch on a very good reason why NAT would not be entirely obsolete even upon the move to IPv6, however.

(Also, by playing around with IPv6 extension headers and a gateway that adds or strips headers to a packet, it's theoretically possible to do routing right _THROUGH_ a NAT on IPv6).

So really, it seems that the only argument against IPv6 migration is just that people are lazy and cheap and don't want to do it right now because it'd actually require some effort.

Re:What About Private Address Space?

[TheRaven64]

Rubbish. NAT is not a security measure. If you have port {whatever this week's virus uses} forwarded, you are just as vulnerable as if you don't use NAT. Similarly, if you have a public IP and a firewall between you and the Internet which doesn't allow anything through on that port, you are secure.

A public IP with everything other the VoIP and (for example) BitTorrent blocked is much more useful, and no less secure than NAT.

Why NAT is so bad

[TallMatthew]

If you've ever tried to implement an IPSEC VPN with numerous endusers that have DSL/CableModem gateways that default to 192.168.1.x, you'll know why NAT is so bad, particularly if you're using that address space internally already. Granted, there are workarounds to this.

That's dicey, but what's even more dicey is trying to interconnect corporate networks that use the same private address space. Companies that run virtual trading floors, for example, offer private line connections. You end up with multiple IP subnet conflicts and it's an incredible headache. That having been said, there are workarounds to that, too.

When NAT became popular way back when, I was part of a few really painful reIPing projects. The reason we went to NAT was because there was no way to get portable IP space and our ISP was being a complete dick, jacking their prices and refusing to run BGP with us. Moving to NAT meant portability and portability meant our ISP couldn't dick us. If I was to move away from NAT and put v6 addresses in my corp network, that's what I'd worry about more than anything.

Re:Why not give PEOPLE addresses?

[onwardknave]

As noted by the recent spate of cellphone-targeting malware....if you don't have the latest coffeepot firewall, someone could make you wake up to decaf! The horrrrror!

In fact, I would think of the metric issue

[WindBourne]

Back in the 70's, President Carter was going to move us to the Metric system. Road signs were being converted to mph/metric, goods were dual marked, etc. The idea was to make the conversion in 1981. Then reagan came in and stopped it. America was nearly ready, but it was stopped. Now, we are just about the only nation that does not do metric. That means that special labeling is done just for us. That also means, our goods are more expensive. Sadly, at this point, we have raised several whole generations without as much metric as we had in the 60's, and 70's. When we decide to finally change, it will be expensive and hard. reagan's choice was very short-sighted.

Right now, is the time to switch. In the future, it will only be more expensive esp. as small devices get IPs. They will also have to be switched. Finally, a new wave of software development could take place with IPv6, that is more difficult to do with IPv4. Not siwtching is very short-sighted.

Re:In fact, I would think of the metric issue

[cpeterso]

Does your wife still work at Jollibee?

Consumer Driven

[el_womble]

Of course companies and academics don't want IPv6 they already have the only real advantage it provides - per machine addressing. Why would they invest money to get something they already have?

IPv6 benefits individuals. It benefits P2P, VoIP, photo sharing, blogging and email (yes email - you don't need a third party server if you have a permanent web presence). Yes you can have all of that with IPv4, but its held together with hacks like NAT, port forwarding and man-in-the-middle servers. That's fine, if like me, you hold a degree in computer science and arn't put off by the nuances of network security, berkley ports and subnet masks but if you're a noob who just wants to share their Christmas pictures with friends and family its a pretty steep learning curve.

I'm a pretty typical nerd. My home network has 4 computers that regularly connect to the internet. Of those, 2 offer services such as SSH, bittorent, email and my testing web server. After christmas that will probably extend to a new XBox360 and a PSP (admittedly passive net users). Next Christmas it might be my mobile. The Christmas after that my espresso machine will probably be consulting a distributed database to see what is the best way of brewing Co-op's Fairtrade Java.

You can buy a computer the size of a pack of gum with a complete Linux operating system and enough horse power to run a web server for ~$200. That's too expensive to be ubiquitous but in 2-3 years time that figure will be in the region of $20 and it will be a WiFi network. It's going to happen.

IPv4 forces our devices to be passive because configuring a NAT Router and Firewall is hard for Joe Public. IPv4 means that we have to poll to get system updates. IPv4 means that I can't just ask my fridge what its contents are without configuring a seperate box. IPv4 means that I'm happy when a third party agrees to handle my communications - I actually ask them to listen in and they 'promise' not to read my mail or listen to my conversations. IPv4 means that when I get an email from my girlfriend at 195.95.195.94 I have no method of authenticating that.

IPv6 means that I buy bandwidth and nothing else. I don't get 100MB of web hosting, or a whopping 5 emails addresses, I get to use my over powered desktop machine with 200GB of 'web space' and as many email addresses as I please. IPv6 means that I can start to build a web of trust, so that I can start to authenticate the messages I receive against a web of my peers - not a single verisign certificate. IPv6 means that consumer electoronics can be connected to my data pipe and that the manufacturer can be responible for its up keep - including firewalls and virus protection.

In short IPv6 allows people to own a bit of the internet and say it's theirs rather than renting an inch and getting kicked off that inch every 4 hours.

You don't understant the Internet

[swillden]

The ONLY machines that need actual IP addresses are servers and gateways. PERIOD. Everyone else can be NATted.

Sigh.

The problem with this statement is that it presumes all content comes from central servers. But that's not what the Internet was designed to be, and forcing it into that model will severly retard, and in many cases simply destroy, all future innovation.

The Internet was designed as an endpoint-to-endpoint communications medium. The intelligence is at the edges, every device on the network has equal access to every other device, none are "special". In practice, of course, 72.14.207.99 (one of Google's servers) *is* special, recieving many more connections than most other addresses, but that's an emergent phenomenon, not one that's designed in. It's only special because lots of other devices *choose* to talk to it. One day they could all choose to begin sending their search requests to some sort of massive, distributed, peer-to-peer search engine (I don't think so, I think it makes sense to centralize search, but perhaps there's a really powerful distributed indexing and search algorithm that no one has yet discovered).

There's huge power, flexibility and opportunity in that model. We do a lot of things using the Internet now, in 2005, but it's still in its infancy. We have no idea what other kinds of communications technologies will arise or what sorts of things people might come up with to do with this medium ten, twenty, fifty years from now. That means it is critically important for the future of technology and innovation that we preserve the ultra-flexible model that the really bright guys at DARPA came up with.

End-to-end delivery. Intelligent endpoints. Dynamic, multi-path routing. No central control. Those are the characteristics that turned the Internet from a lab-based curiosity to such a worldwide phenomenon that we seriously talk about how it will one day touch every human being on the planet. Think about it. The Internet looks poised to become the *single* communications medium used for all electronic communications, be it text, audio, video. What is it that made this such a powerful medium? End-to-end. PERIOD.

Let's not throw it away before we even find out what we can really do with it.

Re:Haha...

[NIN1385]

Awww... c'mon, that's classic family guy comedy!

Re:Why not give PEOPLE addresses?

[drakaan]

Quick test: if you have a web server running on each of your dozens of machines (all on port 80...no bucking the standard), can I connect to each of them using http?

No? Why not? Why can't you just get more IPv4 addresses so that I can connect to each of them?

The advent of NAT has solved the main problems that ISPs have had with giving their customers addresses to use for connecting to "content providers", but it has pretty much eliminated the original "every node is a peer" architecture of the internet.

Sure, if you're an ISP that works for you, but if you're some random guy that wants it to be easy to connect two (currently natted) devices together without involving a third device as a go-between, it's not such a good solution.

It's easy not to get it, just because we're all so used to having to do things the way we have been forced to. The epiphany comes when you realize how much more flexible the system is when NAT is not involved.

Nonsense

[dpilot]

IPV6 could well be DOA, because it solves the wrong problem.

IPV6 solves the problems of the Internet, as originally conceived - egalitarian and end-to-end.

Nobody in power wants that any more. I'm sure that those in power would mostly prefer that the Internet would just go back and hide under the rock it came from, but they DO like the benefits it gives to THEM. If IPV6 goes forward, it'll only be because it has enough momentum as the "logical successor," and because TPTB can't propose what they'd really like.

If IPV6 were being designed TODAY:
It would have DRM built-in for the ??AA, as well as router-based monitors and controls for peer-to-peer networking.
It would have built-in provisions for wiretapping, even at the opportunistic VPN level, for government TLAs.
It would have content and traffic filtering provisions, for China and the Religious Right.

Of course IPV6 really runs counter to all of these "design criteria."

A story

[MightyMartian]

"Tell me, Grandpa, what was it like in the days of IPv4?" young Suzy asked as she played with the IP wireless transmitters in her golden locks of hair.

"Well Suzy," Grandpa said, his mind on the distant past, "back then we only had 32 bit addressing, and much of it was provisioned out to various regional entities, with large corporate interests sitting on whole chunks of the space. We had these things called NAT routers."

"Sounds scary, Grandpa." Suzy shivered.

"It was." Grandpa replied. "The first NAT routers could only support FTP and IRC, and folks using some chat programs could barely get their software to work at all. Still NAT did okay, for a while."

"Then what happened Grandpa?" Suzy asked, enthralled.

"Well, as I recall, the first problems came when handheld wireless devices became more common. They had to sit behind various other networks, without direct connectivity. Proprietary solutions abounded, and connectivity was in the hands of large corporate communications giants. Everyone knew that IPv4 had been in trouble for many years, but some folks said 'NAT's all we need' while others didn't think there was a crisis at all, and even if there was one coming, it was nothing to worry about."

"But there was, wasn't there Grandpa?" Suzy knew the best part of the story was coming.

"Very much so." Grandpa said after a moment. "You see, even with NAT and various other networks between the IPv4 network and the average person's devices, the Internet was growing too fast. The limited supply of IP addresses as beginning to slow the expansion of the Internet. Finally, with the great IP Famine of '18, we had no choice. IPv6 was rolled out. Some folks were mad, because they had put their heads in the sand and refused to recognize the problem had been coming for a while. It costs those people lots of money, and some either had to put up with being stuck behind NAT routers and losing out on new functionality or simply going out of business."

Suzy laughed. "They were very silly people, Grandpa!"

Grandpa nodded. "Yes, they were, but most of us survived. Now it's time to go. Don't forget your data glasses and your book tablet. The last flight to Tokyo leaves in an hour, and I promised I'd get you home before dinner."