IPv6 and the Business-Case Skeptics

Julie188 writes "Experts keep screaming that the IPv4 sky is falling. Three such experts were recently asked point-blank to state an irrefutable business case for moving to IPv6 now, and their answer was more plausible than the old refrain (the lack of addresses and a yet-to-be-seen killer IPv6 app). They said that there isn't a business case. No company that is satisfied with all of its Internet services will need to move, even in the next few years. They also pointed out that Microsoft is a unique position in the industry both causing and hindering IPv6 adoption — causing through its IPv6 support in its OSes, and hindering by not extending IPv6 support into very many of its apps."

You want a business case?

[dmayle]

• It's an opportunity for press, "We're the first baz widget company to offer our services over IPv6".
• Do something kitschy and you've got potential for viral advertising, "Got IPv6? Come see our new IPv6 only thingamabob, look it's funny, share the link with your friends".
• You can garner the attention of early adopters, "You're at the forefront of technology, and so are we. That's why you should do business with Foobar Widgets."

There are plenty of business cases for IPv6, you just have to ask business experts, not technology experts...

Re:You want a business case?

• Do something kitschy and you've got potential for viral advertising, "Got IPv6? Come see our new IPv6 only thingamabob, look it's funny, share the link with your friends".

Sounds like a great idea. Let's make a turtle dance!

Re:You want a business case?

[Kjella]

Yeah, because cutting yourself out of 99%+ of the market by going IPv6 only is a smart business decision. Face it, if you want an online service you're on IPv4 and the service won't really be any different on IPv6. Between HTTPS, VPN and SSL noone is excited about IPSec because it's already solved if less elegantly, nor has the "online home" happened. Neither my fridge, dishwasher, washing machine or toaster is online even in the local LAN so I got no use for my own /64. IPv6 is about as sexy as computers in a new shade of beige.

Re:You want a business case?

[mea37]

Maybe you could build a business case around one or more of those, but what you've really got there are just marketing angles.

The question is, how is this going to make/save me money? More specifically, how will it make/save me more money than investing the input capital in some other way?

• Being able to say I'm the first to have it? Well, that might be worth soemthing for one company in any given industry, if that company's customers care about IPv6 for some reason.
• Unless whatever kitschy thing I might do can only be done with IPv6, I can do it cheaper without the IPv6 conversion and get the same buzz; so to make this a business case you need a specific "something kitschy".
• Attention of early adopters might be of value in some markets, but without some detailed projections I'd be hard pressed to invest in an entire network overhaul for marketing buzz.

I'm not saying the business case does or doesn't exist, but until you've tied it to dollars and cents (or better yet NPV), you haven't made what most people would take as a compelling business case.

Re:You want a business case?

[An+anonymous+Frank]

Actually, that's Foobar Widgetz, and they've got really good items on their download page at:

0:0:0:0:0:0:127.0.0.1

Re:You want a business case?

[wurp]

If you really can find something that people will advertise to one another because it's IPv6, it could make sense. 20% of ipv6 users is much better than 0.000001% of all internet users, even if only 1% of all internet users are ipv6 users.

I can attest that if you build it, they will not come. I built a free site to help people buy & sell either locally (location based search) or nationally (http://frimp.net) about 4-5 years ago. It doesn't do auctions, but it's free (as opposed to eBay), and easy to use and works everywhere in the US (as opposed to Craigslist).

I didn't really advertise, because I have no real idea how to - I ran an ad in the Dallas Morning News, which got me about 100 new members. I ran some ads on Google, to little effect. I'm not sure whether either ad paid for itself or not.

Anyway, four years later, I have about 2000 people signed up on the site. It's not insignificant, but it's not going to pay back 1% of what I've invested in effort, either.

My point is that if you can come up with some (ugh) gimmick to get people to talk about your whatsit, even if the people who talk about it belong to some very limited group, it can make a big difference. Of course, that assumes that people using ipv6, or people who might be likely to use ipv6, talk to one another.

Re:You want a business case?

[ShieldW0lf]

If you're one of the people who has enough static IP addresses to serve your needs, you're better off with IPv4, because that will make sure you're among the few who do. Increasing supply doesn't serve those who already have enough, which would be those interviewed.

If you like things the way they are, where the restricted number of static IPs makes it impossible for the great unwashed to have a voice and the web is coming to resemble a television set more each day, well, you're not going to be supportive of IPv6. Plenty for everyone means no leverage, which means no profit. Which means IPv6 isn't going to get business support from the IT sector any time soon.

Re:You want a business case?

[stevied]

You might also want to ask "technology architects" rather than "technology experts."

Some people are very good at learning the details of existing technologies, and figuring out how to mangle them to solve tomorrow's problems. Other people take a broader view and wonder how to solve next year's problems by creating new technologies. Both have their place, and there must equivalents on the "business" side of a business - people who try to foresee major economic events, the birth of whole new markets, etc. The fact that IPv6 is in many ways a "plumbing" issue (oops, made another tubes allusion) doesn't mean that long-term thinking isn't called for, even if many businesses aren't used to it in respect of (IT) infrastructure.

(Incidentally, the analogy to real architecture works quite well, I think. Sometimes "vision" is called for when creating new buildings, a whole fresh design; other times the traditional way of doing things, a design that has slowly accreted over the years, is fine.)

Re:You want a business case?

[LongestPrefix]

Sorry, dmayle: a business case is more than just features and advantages. A business case should include an estimate of the costs, and some estimate of the revenues.

The problem for ISPs is that the costs are quite high, but these alleged features and advantages have almost no value because they bring almost no revenue.

The problem for users is that the costs are high (in terms of time and effort) but the advantages are, heretofore, nil. There's nothing I could do with IPv6 that I actually want to do that I can't do with IPv4.

Re:You want a business case?

[assantisz]

I am sorry but that explanation is lame. Is there any operating system out there that does not support dual TCP/IP stacks? Is there any mainstream application out there that does not support IPv6 in addition to IPv4? There you have it. Just configure your IPv4 system to be also capable of IPv6 and offer your services in both ways. You just need an upstream provider that provides you with IPv6 connectivity (a little more difficult but not a show stopper).

AFAIK there is only one real problem left that will keep many big businesses from deploying IPv6: multi-homing. The technology to have more than one upstream provider for IPv6 connectivity is still in flux.

Re:You want a business case?

[I'm+not+really+here]

I agree wholeheartedly. I want a static IP.... My cable company says "there are only so many available, so we have to charge you $50 per month for that feature."

Thank goodness for dyndns.org, but still... I want my static IPs so I can run my own server and access my network without having to use a 3rd party service to synch up the IP and the domain.

Re:You want a business case?

[xaxa]

You don't really need an IPv6 capable ISP for the bare minimum of IPv6 -- there's an anycast address (192.88.99.1) for the nearest 6-to-4 relay which worked with no problems for me.

What is a problem is routers -- specifically, consumer routers with integrated modems etc -- which don't support IPv6. My ADSL modem/router worked after I'd given it a new firewall rule -- I could then use IPv6 on one PC on the LAN. But what should happen is the router gets the /64, then assigns addresses within it (like DHCP) to any devices on the LAN as required. Few (if any) consumer routers support this.

Re:You want a business case?

[hedwards]

I don't really agree, there isn't any reason why businesses have to ever go ipv6 on their local network, more likely than not ipv4 will be used like that for some time with the conversion being done at the router level.

You also don't make these sorts of changes 100% before pretty much everybody has partial support. It wouldn't make sense, the amount of effort it would take to get damn near everybody using ipv6 would make it prohibitively difficult to do.

As of right now there is absolutely no excuse for organizations of any size to not be preparing for the transition. If the options really are insufficient, the best way to know that and to find a fix is to start testing as well as limited use. Waiting until the last minute has a pretty huge cost if for whatever reason it doesn't work.

Re:You want a business case?

[darkpixel2k]

I want my static IPs so I can run my own server and access my network without having to use a 3rd party service to synch up the IP and the domain.

Try here (just giving my colo provider a free click)

Seriously--I pay $59/mo for a dedicated server. I have 16 IPs included with an offer of additional IPs for free.

If you want home internet access, call Comcast, Verizon, Sprint, Qwest, AOL, Compuserv, or whomever.

If you want to host a server, call a hosting company. Your home internet connection is not sold for hosting servers.

Re:You want a business case?

[Abcd1234]

If you want to host a server, call a hosting company. Your home internet connection is not sold for hosting servers.

That's a BS argument. What if I want to stream my music collection, that's stored on my media server, to work? Or access MythWeb so I can alter my recording schedule during the day? Or simply SSH to my home machine so I can retrieve something I was working on? None of these cases are served by using a hosting company, yet all qualify as "[hosting] a server".

Re:You want a business case?

[Cato]

The real business case is very simple:

* IPv4 addresses will run out in around 2010 to 2011

* Businesses that need new addresses (mostly ISPs and telecom operators) will need to go IPv6 just to keep operating in longer term (even if there are short term workarounds, they don't work forever - this is why Comcast already has IPv6 live in its core network)

* Planning ahead will be important to avoid an interruption in business (can't get new IPv4 addreses so can't activate customers)

* Around 2009/2010, the stock market will start to assess public companies as to whether they have an IPv6 transition plan, and the press will start to hype "IPv4 is running out - another Y2K is on the way" - companies that don't have an IPv6 transition plan will find their ratings and stock prices fall

If you want to continue expanding as a telco/ISP, and to have a healthy stock price (after the current dip), you will need a serious plan to move to IPv6. It's that simple.

This article was generally quite pro IPv6, the summary was atrociously slanted against v6. But that's Slashdot for you...

Re:You want a business case?

[rtb61]

IPv6 because every new internet device created can have it's IP address preset and the RIAA, MPAA and various governments et al will love that and if not preset, then every internet user will have their own personal range of addresses which they will use in their devices. So no choice at all.

There is no business case *in the US*

[johannesg]

Countries like China and India, that have lots of people that might one day want to connect, but not a lot of existing infrastructure yet, and certainly not a lot of IP4 addresses, will have a far better motivation than countries that have an abundance of unused addresses.

The killer app will come, alright - just not from the US.

Re:There is no business case *in the US*

[sakdoctor]

India and China have 38 percent of the world's population who might want to connect one day.

I have a house full of linux running household appliances that want to connect today. In fact my toaster said it would kill me if it didn't get it's own internet facing IP address by the end of the year.

Re:There is no business case *in the US*

[Chris+Mattern]

My toaster got told it'll go through the NAT router like everybody else and like it.

Re:There is no business case *in the US*

[Cajun+Hell]

China? They can just use NAT and have one address for the whole country. ;)

Re:There is no business case *in the US*

[mshannon78660]

Well, since IPv6 was laid out in RFC 2460, and that RFC is not listed as having been obsoleted, I think you are incorrect. There are more recent RFCs which specify certain applications and/or protocols running over IPv6 - however, this situation is no different from IPv4 - where there are still RFCs being published today to specify particular applications and protocols. Oh, and RFC 2460 was published in December of 1998 - so I think we've had plenty of time for testing...

Re:There is no business case *in the US*

[Tubal-Cain]

Mine grew an arm and stabbed me in the face.

Re:There is no business case *in the US*

[againjj]

Did you read the toaster's man page first?

Here's mine:

[Just+Some+Guy]

"Boss, I can get an IPv6 tunnel for free so that we can start experimenting and testing. We work with the Department of Defense, and they say that this stuff is important, so with your permission I'd like to spend $0 to start playing with it."

And that's how we came to be on IPv6.

Re:Here's mine:

[sunking2]

Boss says, 'You want to be paid to do that when you haven't even recovered the email for me that I deleted last week? You aren't paid to play. Dance monkey boy, dance. And don't forget your pager when you leave tonight.'

Re:Here's mine:

[Just+Some+Guy]

It sounds like you work for an awful boss. Have you considered taking night classes to help land a job that rewards intelligence?

Re:Here's mine:

[Tony+Hoyle]

That will work only if your boss is an idiot and doesn't realize that you cost money. Personally I'd rather ask for a couple of days off on full pay.. you're effectively asking for the same thing but it's more fun.

Re:Here's mine:

[Just+Some+Guy]

Son, the GP was likely working in IT before you were born...

Hey, I'm not that old! Although now that you mention it, I first started hosting a BBS using software that I wrote for the C=64 in about 1983.

Dang. Please excuse me while I go search for my Geritol.

IPv6 will happen when China demands it

[Animats]

IPv6 will happen when China demands it. China's growing need for IP address space will drive the issue. China needs at least a billion IP addresses. Especially since the Chinese government would like a system where each device has a permanent IP address.

Re:IPv6 will happen when China demands it

[Cajal]

China has already demanded it. China's new national network, CERNET2, runs IPv6 - http://www.chinadaily.com.cn/english/doc/2004-12/27/content_403512.htm.

Re:IPv6 will happen when China demands it

[jonbryce]

Ultimately China will need a lot more than a billion IP addresses. At the moment I have internet connections for home computer, work computer, mobile phone and laptop

Re:IPv6 will happen when China demands it

[dunnius]

Then perhaps it might be prudent to instead use IPv8 so that we won't have to change the system again for a really long time.

Only IPv6? We could have had a IP V8. :-D

Not exactly true

[Cajal]

There's no business case if you don't care about growing your network. If you do, you need to care about IPv6, becuase in a few years, it's going to become increasingly difficult to get new public IPv4 addresses.

Actually, Microsoft supports IPv6 in several of its core products. IE, Outlook 2007, Windows Mail/Live Mail and Exchange 2007 support IPv6, as do many of the services in Windows 2008 (IIS, DHCPv6, DNS, POP, CIFS, LDAP, Kerberos, Remote Desktop). Some of these also have IPv6 support on Windows XP (IE, IIS, Remote Desktop, CIFS).

Re:Not exactly true

[Paralizer]

There's no business case if you don't care about growing your network. If you do, you need to care about IPv6, becuase in a few years, it's going to become increasingly difficult to get new public IPv4 addresses.

Many companies do not need public IP addresses, yet they have large networks. For example, imagine a company that has a location with 2,000 employees. The company does not offer web services but they do need internet access for their employees to be able to send/receive email and use business applications between sites (via VPN tunnels). In this case the company may only need a handful of IP addresses and NAT all of their private addresses through the pool of 4 or 5 public IP addresses for that location. They can easily add a new building to their location and just expand their LAN as they have an entire 10.0.0.0 A block providing millions of IP addresses. NATing between the internal LAN and the internet they can get up to ~250,000 entries (provided their hardware can support that), allowing each of their 2,000 users to be using, on average, 125 internet applications (or open connections) at once.

This situation I suspect is typical of almost all companies. Most already have enough public IP addresses to satisfy all of their internal users and lots of room to expand on their LAN side.

Re:Not exactly true

[Cajal]

NATing between the internal LAN and the internet they can get up to ~250,000 entries (provided their hardware can support that), allowing each of their 2,000 users to be using, on average, 125 internet applications (or open connections) at once.

What's going to be more expensive: A massive NAT box or an IPv6-enabled router (as many already are)?

What's going to be more expensive: Adding NAT buster support into many apps, or using IPv6 (many apps are already IPv6-aware)?

At the APNIC 26 conference last month, NTT presented some ballpack numbers for how many people can be comfortably put behind NAT. They're not encouraging. Basically, the common "Web 2.0"-type apps open a lot of background connections, which chews through your ephemeral port space quickly, limiting the number of people that can be NATted. Google echoed those claims loud and clear: "AJAX applications break behind excessive NAT."

Also, consider that by 2012 we'll have run out of public IPv4 addresses. But only 25% of Earth's population will be online. Do you propose to put another 3.5 billion people behind NAT? I'm pretty skeptical that NAT can handle that load.

While NAT will likely be needed in the short term to deal with IPv4 address exhaution, I'm highly skeptical of its long-term scalability.

Re:Not exactly true

[profplump]

What happens when that company wants to setup a VPN to another company that also uses the 10.0.0.0 address space? Now I need a NATNAT device that invents a whole new set of addresses to let machines inside the two private networks talk to each other.

I'm not saying that everyone needs to be directly on the Internet with a public address and no firewall. But even if you are going to assign private addresses internally, there's value in having (or being able to easily obtain) a globally unique address so that you can form arbitrary connections to any other machine on the planet.

Re:Not exactly true

[Paralizer]

Well not all 2,000 users in my example are going to open 125 connections simultaneously so the NAT table on the router isn't going to be that enormous, but maybe just a small fraction. Your typical enterprise Cisco/Juniper router/firewall can probably handle that load fine (I'd have to double check on that), or maybe you can load balance between multiple routers each with different public IP pools.

If you agree with that assumption then you can say your business class router/firewall that can handle both the NAT load and that can also handle IPv6 if you enable it. So you have the same device that can do either. You are currently running the NAT "solution", so you pay nothing for hardware to make the transition. However, there is still an administrative cost associated with a network wide infrastructure shift like that. So your networking team takes the time to transition the whole system and you may even have intermittent downtime while certain parts of the network are upgraded. That cost of the time spend and the possible downtime is what needs to be justified to be able to make this upgrade.

You may already have the equipment to be able to do it, and your ISP may already provide you with IPv6, but it comes back to the original question... "why send the time and money to move if our current 'solution' works?"

Remember that internally your organization can stay at IPv4 forever (or until some killer IPv6 app comes out) and just NAT itself off to the IPv6 world (NAT dual stack or NAT 4to6 transition methods). The best thing I can think of off the top of my head is to try to spin a 'future proofing' angle to management -- we make the investment now and it will pay off in the long run. But management has a way of crossing bridges when they get to them.. at least that's how it seems to be where I work.

Re:Not exactly true

[egamma]

My company solves that problem on a frequent basis. It's not that hard--it's called a "reverse-NAT". you simply NAT the other guy's IP addresses to 172.16.0.0 or something and they do the same. Neither side knows that they are being NATed, and they don't care--all they know is that 172.16 is the "other" network.

Re:Not exactly true

[againjj]

Also, consider that by 2012 we'll have run out of public IPv4 addresses.

That is not the hard fact it sounds like, but depends on a number of assumptions that may or may not pan out. This has been proclaimed for quite a while now, and the date keeps getting pushed back. Why? Because assumptions keep getting broken by things like NAT and CIDR. The next big thing I imagine will be the reallocation of class A addresses: why should the likes of HP get multiple class A's?

I predict that the allocation of IPv4 addresses will not have a hard stop, but rather will trail off over time as IPv4 addresses slowly become harder and harder to come by. That is what has happened so far: addresses were thrown out like candy originally, then the aforementioned class A's were stopped, and then class B's were largely stopped too. It is hard to get a large chunk any more, and the trend will continue, but the change will be gradual.

Re:Not exactly true

[springbox]

What about putting NAT behind NAT?

Re:Consumer rollout

[Timothy+Brownawell]

Moving to IPv6 means that I can't use NAT anymore for my home network.

I don't believe that's accurate. What's supposed to happen is that your ISP gives you a /64 block and you don't need NAT, but nothing says you can't use NAT if you want to (or if your ISP doesn't play nice).

Re:IP4 - elegant IP6 - Rube Goldberg

[Just+Some+Guy]

192.168.1.87 -vs- fe80::e1c0:5620:bc95:3c71%9

I see your unwieldly addressing and raise you a DNS.

Besides, if you want to talk Rube Goldberg, check out IPv4's variable-length headers and the processing required to sort them out at line speed.

Microsoft and IPv6

[BhaKi]

Actually, Microsoft is the last company to add IPv6 support to its OSs. By the time of arrival of WinXP, most other OSs including Linux, Solaris and BSDs had it atleast for 2 years. And WinXP offered it as an optional protocol that had to be installed manually. Vista is the first version of windows to offer IPv6 in a default install.

Re:Microsoft and IPv6

[0racle]

Windows is the most used though. In this sense, Microsoft did more to bringing IPv6 to everybody then switching ever other OS over would have. On top of that, Microsoft was not the last. Windows NT and 2000 had an IPv6 implementation available, with the first release of that in 1998, the same year Solaris 7 was released which also had a IPv6 add-on as Solaris didn't ship with IPv6 until Solaris 8 (2000). While the first release of IPv6 for Linux happened earlier (1996), it was unmaintained and almost useless until Linux started tracking KAME in 2000. Those efforts did not enter the mainline kernel until the 2.5 development cycle. While some of that was backported to 2.4, the first production kernel to include IPv6 (as opposed to it being an external project) was 2.6. KAME (IPv6 for the BSD's) started in 1998.

In short, just about everyone had a working IPv6 stack at about the same time.

Re:Consumer rollout

[Just+Some+Guy]

Moving to IPv6 means that I can't use NAT anymore for my home network.

You technically can, but there are few sane reasons for wanting to.

That means I need a block of IP addresses assigned to me. So does my telco/cable company have this set up and will it cost me a huge amount to get a block of IPs?

Correct, yes (they will), and no (it won't). I have a free /48 allocation from Hurricane Electric, giving me a home netblock of 2^80 addresses. If your ISP tries to rake you over the coals, I could probably peel off 2^64 or so of those to lend you.

Excuse me, Why are they not interoperable!

[lrohrer]

The reason no one upgrades is that the new "standard" is not simply interoperable with the old. When color TV came out you could still watch the same programming on you B/W. It is not the case with IPv6. You need new routers, new software, new DNS and to train your people. Sure Apache 2.0 and Vista work but an Apache configured just with IPv6 can not serve people on the "internet" (yea yea build a bridge yada yada yada)

Please, the spec is bad just for this reason. The simple basic requirement for new addressing scheme is that it works with existing equipment.

Time to start over with a new spec.

Re:Excuse me, Why are they not interoperable!

[profplump]

Have you ever actually looked at what's required to parse an IPv4 header vs. an IPv6 header? There are plenty of good reasons that IPv6 decided the IPv4 structure was not a good plan.

Beside that, there's no practical way to add address length to IPv4 headers that wouldn't break old equipment. Moreover the kind of breakage caused would be harder to detect and repair -- old equipment would see the IPv4 header, not know about the new extensions, and likely do the wrong thing (like forward traffic to the address corresponding to the first 32-bits of the longer address). At least if you change the protocol number old equipment won't start randomly sending traffic it doesn't understand around the Internet.

Re:Excuse me, Why are they not interoperable!

[Todd+Knarr]

Except that the IPv6 design is backwards-compatible. Any IPv4 address has, per the IPv6 spec, an IPv6 representation, so any IPv6 machine can talk to a machine that has only IPv4 connectivity. Likewise, if your IPv6 machine also has an IPv4 address, there's a defined transformation to allow traffic to it's IPv4 address to be handled by the IPv6 stack. Most IPv6 stacks include all this functionality internally already.

And yes, IPv6 is radically different from IPv4. It's different for the same reasons a Freightliner semi tractor's radically different from a Mini Cooper: it's designed to do things the Mini's incapable of. Sure, you can redesign a semi tractor to be similar to the Mini, use the same parts as the Mini and all that, but in doing so you'd make the tractor cease to be a semi tractor and cease to be capable of doing what you wanted a semi tractor for.

Re:Excuse me, Why are they not interoperable!

[stevied]

IPv4-compatible addresses are deprecated, and IPv4-mapped addresses are basically only there so you can write an "IPv6 only" application and still transparently handle IPv4 connections. The actual system the app is running on still has to be dual stack.

IPv6-only hosts can't talk to IPv4-only hosts without help. As noted above, what could an IPv6-only node put in the source address of an outgoing IPv4 packet that would ensure it got to see any responses?

And and that risk of looking like I'm deliberately trying to shoot down your entire post (which I'm not!), apart from the address size, IPv6 is reasonably similar to IPv4. It tidies some stuff up, makes a few optimizations (no checksums, no fragmentation), but is still recognisably "IP."

port forwarding != nat

[Nicolas+MONNET]

You can do port forwarding without NAT.
And he's wrong, nothing's preventing you from doing NAT on IPv6, except that it's probably never been implemented since it's kinda pointless.

Similar to climate change

[stevied]

This is a bit like saying there is no business case for doing something about climate change. Sure, I can't tell anyone that specific bits of their infrastructure are going to get wiped out by hurricanes, or that particular segments of their markets are going to be bankrupted and / or drowned by rising sea levels, but that doesn't mean it's not a good idea.

Similarly, I can't forecast what the oil price is going to do, whether it will be higher or lower in 12 months time than it is now. I don't know when we will hit peak oil, or if we've hit it already, and I don't know the exact consequences of that. But that certainly doesn't mean that looking at ways of reducing energy requirements, and alternative sources for them, isn't a good idea.

I can't say what will happen as IPv4 address scarcity hits. Will people be denied allocations outright? I doubt it. Will small blocks of addresses in random parts of the address space be auctioned to the highest bidders? Seems more likely. Will dealing with the huge routing tables caused by all those disconnected little blocks put stress on routers, causing reliability issues and more money to be spent on upgrades? Quite possibly. Will we see people rolling out multiple layers of NAT, and all sorts of ugly application-helpers? Probably. Will it be reliable? I doubt it.

Times are hard economically now, and as a result people pull their horns in and look for hard, specific reasons to justify effort and expenditure, particularly immediate, short-term reasons. But short-termism got us into the current (economic) mess in the first place. Step back, look at the big picture. Yes, it's fuzzy. That doesn't mean there aren't obvious trends, obvious problems -- and also some reasonably obvious, big-picture solutions.

Re:Consumer rollout

[dave024]

long ip addresses?
Your isp should give you a /48 block, which is 12 digits long (2001:4200:24AB::/48), similar in length to an ipv4 address. You could then number your devices sequentially
2001:4200:24AB::1/64
2001:4200:24AB::2/64
2001:4200:24AB::3/64

What's so hard to remember about that?

Re:IP4 - elegant IP6 - Rube Goldberg

[bigstrat2003]

Correction: they're a tech on a tiny network where they're used to memorizing the DNS zones. At this very moment, I'm not sure I can tell you the IP of the webserver I work on most often - not because I never access it, but because I've been accessing it via DNS for the last five years and have never once in that time needed to connect via IP.

So you've never needed to troubleshoot a network problem. Good for you.

Your assumption that anyone who needs to know an IP address must be working with a tiny, memorizable DNS zone is completely false. Like I said, DNS is something that can break. For example, where I work, our dynamic DNS is broken, and the server team refuses to work on the problem (or delete bad entries...). So, when I want to work on one of my user's machines remotely, I sometimes need to find out from the user what their IP address is. Now, I don't know about you, but I'd much rather deal with repeating "192.168.1.87" over the phone than "fe80::e1c0:5620:bc95:3c71%9" (to use the previous example).

And what if you suspect the name servers are down, but want to be sure that they are, indeed, the problem? Boy, it would sure be nice to have a nice, easy IPv4 address memorized for testing, than a long, unwieldy IPv6 address.

Your lack of ability to imagine situations where knowing IP addresses is useful does not mean that they don't exist.

Stages of Grief

[georgewilliamherbert]

Network architects and admins with clue are currently at the "Depression" stage (4th stage).

Why Slashdot feels that putting up a commentary authored by someone who's still in the first stage ("Denial") is useful to anyone is beyond me.

IPv4 exhaustion is coming. CIDR got us from the mid-90s until now. But it's coming now. Please stop denying, being angry, trying to bargain it away. Hopefully we'll all move past depression into acceptance (as vendors and infrastructure gets ready) before it hits. But I know a lot of smart people who would prefer to retire in the next 2 years instead of be there when it hits.

They probably won't, but would like to...

Some companies dont' even WANT to use public IPs

[Sycraft-fu]

Even if you said "Here, have a /8 completely free, use whatever you like," they'd still want to do NAT. Why? Privacy and security. NAT automatically gives a good measure of security. You have an inbound firewall by default, simply because of how it works. You have to explicitly set up any inbound ports to be forwarded. Also this means that to get to any system that doesn't have a forwarded port, you'll have to get access to a system that does. With public IPs, there is always the possibility that the firewall fails or is shut off and you can get at a system. With NAT, you have to get inside to be able to get at anything.

Privacy you also get just by the way NAT works. Since you have many people using a few (or one) IP addresses, it is much harder to track what any given computer is doing. Web browsing can be tracked with things like cookies (if the client accepts them) but over all you really can't tell what is going on for a given system inside the network.

So NAT is something companies may well want to keep doing, even if they don't have to.

IPv11

[newr00tic]

IPv11!

We need a new Godwin's Law for Global Warming

[Ungrounded+Lightning]

This is a bit like saying there is no business case for doing something about climate change. ...

Oh, no! Now we have a Global Warming take on IPv6 adoption!

I think it's time for a new version of Godwin's law with Global Warming / Climate Change substituted for NAZIs:

As a scientific, technological, or political discussion or grant proposal grows longer, the probability of an assertion of a tie-in to climate change approaches one.

= = =

I realize you may have had a serious point. But (like NAZI analogies) the global warming tie-in has been used so often, and so inappropriately, that it's painful to read past it to search for any real meat in such a posting.

Availability of hardware

[Teun]

From the techs at my ISP I understand there are serious problems with availability of IPv6 hardware, especially good load balancers seem to be non existent.

So until then they won't be pushing IPv6 although it is available and even supported for the curious and brave.

NAT is *not* a security technology.

[Cajal]

Repeat it until it sinks in. In some cases it is possible to tunnel through NAT routers. And there are several attacks that do not depend on the victim having a public IP address. If you want security, use a firewall, anti-virus and anti-spyware technology.

Re:Consumer rollout

[Todd+Knarr]

The cost of having (probably) Cisco write custom firmware for all their equipment, and the cost of maintaining that custom firmware. It's possible to get the routers to handle a /128 assignment, but you're fighting the equipment the whole way. And it fails to work with Windows, whose IPv6 stack assumes that IPv6 stateless autoconfig works properly and doesn't play well with routers that refuse to accept the stack's use of it's own MAC-address-based value in the lower 64 bits. Again this can be worked around, but it takes a lot of heavy messing-about in low-level configuration to make it all work right. And how many ISPs are going to tell their customers that the ISP doesn't support Windows?

Re:IP4 - elegant IP6 - Rube Goldberg

[Firehed]

Lucky you. There's not a system on my home network that can be reliably accessed through anything but the IP address. I've experienced the same reliability on every network I've ever touched.

Now internet-wide DNS is pretty damn solid, but that tends to happen when there are about seven levels of fall-back. LANs tend not to be nearly that robust.

Having said that, IPv6 addresses are stupidly over-complicated. Adding two groups onto IPv4 would probably have been more than enough for quite a number of years to come (281,474,976,710,656 IPs should be plenty for a while), even if it's not quite as futureproof as IPv6 which is something like 1 IP for every four atoms in the universe.

I'll give you a business case

[SirShadowlord]

...In _one_ customer deployment We're deploying 1.7 million devices over 1200 mobile subnetworks in under 18 months. Each device needs to be capable of self addressing and migrating from subnetwork to subnetwork subject to the local RF conditions.

These devices need to be uniquely addressable from existing Unix hosts, as well as capable of being monitored from current Enterprise Network Element Managers.

We've further hypothesized that by 2012 as many as fifty of these networks will be in existence, each of which may need to have all their nodes addressable by multiple vendors.

There is your business case for IPV6.

Ironically, internally, in our company, and on all of our servers - we are 100% split stack. No desire whatsoever to run IPV6 pure environments. NAT does everything we need. Don't even run IPV6 on our IPSEC Remote Access VPN or 802.11 environment.

Re:Multicast

[Wesley+Felter]

In the v4 Internet, multicast exists but is usually disabled (except U-Verse).
In the v6 Internet, multicast will exist but be disabled (except maybe U-Verse).

Re:Consumer rollout

[Fred+Ferrigno]

So what do I do if I've only got a /64 from my ISP but I want to segregate unsecured wireless, secured wireless, and wired? I think it would be in Cisco's (and Microsoft's) best interest to have a solution for that use case, which would naturally translate into a solution for the ISPs. What's more, if some big ISP like AT&T or Verizon is pushing for it, I have little doubt that Cisco would comply.

Re:Some companies dont' even WANT to use public IP

[SanityInAnarchy]

With public IPs, there is always the possibility that the firewall fails or is shut off and you can get at a system. With NAT, you have to get inside to be able to get at anything.

In that sense, it's also always possible that the NAT gets shut off -- thus implying that a handful of computers on your network have live Internet IP addresses, and the rest are denied DHCP access -- or it's possible that it fails, as is the case with things like NAT hole punching.

Privacy you also get just by the way NAT works. Since you have many people using a few (or one) IP addresses, it is much harder to track what any given computer is doing.

An anonymizer may make sense for an individual behind the NAT, but I doubt it helps the corporation at all. In fact, if I get a ton of spam, and I send mail to your domain saying "It's from <IP>", wouldn't you rather know exactly which computer that IP corresponds to, so you can shut it down?

Since the corporation has no real reason to provide that privacy, why should it be their obligation?

Re:IP4 - elegant IP6 - Rube Goldberg

[9Nails]

I agree with the person who said elsewhere that NAT solves this problem much more neatly than IPv6. How many routable addresses do you really need, even at the biggest companies? It surely can't be that many (1000, tops?), and for the rest, you can use the 10.0.0.0 block, and use NAT. I can't imagine that having 16 million addresses for your internal network wouldn't be sufficient.

That's what I feel is the important take away from this. the big Telcom guys might need it, but little ole me on this desktop in my house can care less. My ISP might need my router to be IPv6 compatible so they can interface with many more clients. Maybe my Cel Phone will need it in the future? But from behind a router, I'm always going to run IPV4 inside my networks because they're easier to understand and IPv6 doesn't give me any additional benefit when my 10.6 network is "all that I'll ever need." Right?