IPv6 Adoption Up 300 Percent Over 2 Years

Mark.J - ISPreview writes "The Number Resource Organization, which is made up of the five Regional Internet Registries, has revealed that the rate of new entrants into the IPv6 routing system has increased by 300% over the past two years. The news is important because IPv4 addresses (e.g. 123.23.56.98), which are assigned to your computer periodically, are running out. IPv6 addressing (e.g. 2ffe:1800:3525:3:200:f8ff:fe21:67cf) was invented as a longer and more secure replacement." IPv6 is still gaining ground slowly, particularly in the US.

wow

[Lord+Ender]

And the rate of downloads of Ubuntu 8.10 is up infinity percent in the past two years.

Re:IPV4 addresses are NOT running out

[Ephemeriis]

God, I'm tired of it being repeated that IPV4 addresses are running out. Everybody who's not a journalist should know that it's not true.

There's no reason every person on earth needs an IP. Nat+uPNP is perfectly capable and 100% backwords compatible.

That really isn't entirely true.

NAT and uPnP may work well for your average home user... But it causes some headaches in larger networks. And if you've got a pile of servers that need to be globally accessible - like webservers - you don't really have an alternative to multiple IP addresses.

That's not even getting into all the millions of unused IP's being held by the early internet companies.

This is certainly true. There are several huge blocks of IP addresses sitting unused. Freeing these up would go a long way towards keeping IPv4 alive. At least for a while...

IP's just need to be charged for on a early basis. Start with $1 per year per ip to EVERYONE who owns an IP's and you'll see the "IP Shortage" vanish overnight.

It might very well vanish overnight... But it'll return eventually. The fact of the matter is that we keep coming up with new reasons to route information over the Internet. And all these new devices and gadgets require an IP address.

One of the cities that we support recently bought a new chiller for their ice rink. Their old one was just managed in-house. You had to be standing in front of the device to do much of anything. And if it was malfunctioning they had to send someone out to eyeball the machine. Their new one has a network jack and can be monitored remotely through a web interface. So we had to get them bandwidth and a static IP address so they could keep an eye on things even when nobody was physically at the civic center.

Sure, there are some absolutely stupid and frivolous things we're doing these days. Folks don't need to be able to surf the Internet from their microwave oven. But it is getting to the point where we expect to be able to gather information from just about everything, and view it just about everywhere. Folks expect to be able to hit Google or Wikipedia from their cell phones. Lots of industrial equipment can be managed remotely. I know I routinely troubleshoot issues remotely.

To a certain degree we can hide these devices behind NAT... I can have a dozen web-enabled appliances in my house and just use different ports forwarded through a single NAT'ed IP address to access them. But what about devices that don't necessarily sit behind a router? What about my web-enabled phone?

And what happens when the ISPs start running out of addresses? Are they going to install giant NAT routers themselves? Are we going to wind up with several layers of NAT?

IPv6 address for slashdot.org

[Radoslaw+Zielinski]

Any chance Slashdot could get IPv6 connectivity?

Progress in this direction is "stuff that matters", after all...

Re:IPV4 addresses are NOT running out

[Just+Some+Guy]

Most machines don't need an externally accessible IP.

Unless they want to use something as exotic and unpopular as BitTorrent, you might be right.

Re:The potential of IPv6 is kinda scary.

[TheRaven64]

Rubbish. Border security is not security. You can get exactly the same 'security' as NAT with a trivial firewall on IPv6 that blocks all inbound connections and maintains state tracking for UDP ports. You can set up NAT with a default route so one machine gets all inbound packets destined for the public address and not redirected by an outgoing connection, and you can have firewalling without NAT. The two concepts are orthogonal. What makes you think that consumer-grade IPv6 routers will not default to blocking all ports?

Re:IPV4 addresses are NOT running out

[squiggleslash]

There's no reason every person on earth needs an IP. Nat+uPNP is perfectly capable and 100% backwords compatible.

1. We're talking about network devices, not people.
2. NAT+uPNP is not "100% backwards compatible". Older applications that need incoming connections certainly can't use NAT and uPNP. It's arguably slightly better on backwards compatibility than IPv6, but not greatly so.
3. NAT and uPNP are hacks that do not solve most of the problems that IPv6 is designed to fix.
4. If an OS supports IPv6 (and which popular operating systems do not? Mac OS X, Windows XP, Vista, and all desktop and server distributions of GNU/Linux I've seen lately support it out of the box, no special configuration required), then adding IPv6 support to your network is just a matter of adding a gateway/router that falls back to 6to4 if it can't get a valid IPv6 netblock. How is uPNP or NAT easier than that?

In the end, we want peer to peer connectivity. That's what the Internet was designed for. We currently use a clumsy group of non-transparent hacks that "mostly work" to work around the fact that we can't give every device a predictable IP when it leaves the factory. IPv6 is a clean architecture that scales, that works predictably, that works now, and that allows peer to peer connectivity between IPv6 nodes transparently.

The only reason why people aren't switching to it now is because everyone's still hung up on hacks to get IPv4 to work acceptably. If the router manufacturers followed Apple's lead and incorporated IPv6, including 6to4, into all new routers, most people would switch to v6 without even knowing it. We'd suddenly have an ecosystem where everything would "just work" - buy an Internet-enabled widget from the shop, plug it into any Ethernet port on your network, and it'd work, no configuration required, regardless of what it's supposed to do.

To get there, we have to stop doing what we're doing.

Re:The potential of IPv6 is kinda scary.

[Just+Some+Guy]

This puts a lot less stress on network security than there should be in a business environment, and much less attention to what should or shouldn't be allowed through a local firewall, let alone a site firewall.

I disagree. Say your current NAT setup is:

22->192.168.0.1:22
80->192.168.0.1:80
25->192.168.0.2:25
143->192.168.0.2:143

The firewall equivalent is:

block all
pass (22, 80) to 192.168.0.1
pass (25,143) to 192.168.0.2

The decision making process is identical. You've already decided which ports are which machines should be exposed, and that's the hard part! Once you're past that, the semantics of NAT and a "default deny" firewall are almost identical.

For everyone who says v4 isn't running out

[FliesLikeABrick]

1) the fact that NAT exists means we ran out a long time ago

2) NAT is not a proper solution. It crosses the Network and Transport layer boundary to provide a hack solution to a Network layer issue. Having something like NAT prevents anything besides UDP or TCP from being used behind a NAT, since NAT relies on port mapping between UDP and NAT

3) What makes people think uPNP is a good idea? Wouldn't it be better to just have *real end-to-end connectivity* like was actually intended and used to be the case?

4) As the world of networked devices and content providers increases as fast as it always has been or faster there will be a growing need for content providers (servers) that cannot be behind a NAT while still hoping to use well-known ports for services

5) NAT does not scale. State tracking tens of thousands of connections? Since state needs to be tracked, load balancing something like NAT is just yet another hack on top of a hack.

I would love to hear someone explain how using NAT is a feasible solution permanently. Reclaiming unused sub-allocations from legacy /8s and stuff is not a permanent solution, denying that IPv6 is needed due to the application of a growing list of band-aids is obnoxious to listen to.