Slashdot Mirror
There Is No Plan B, the Ugly Transition To IPv6
An anonymous reader writes "The Internet is running out of IPv4 addresses — not at some point in the future, but right now. But the only solution to the problem, IPv6, is just now really starting to be deployed. That's why we're all in for some tough times ahead."
Maybe we should reclaim some of AOL's massive block of addresses. It would help a little in the short run. And they sure aren't using them.
What? We're running out of IPv4 addresses? Why are we only learning this NOW? This is an outrage! Why haven't tech sites told us about this problem sooner...say, several times a year?
Article invalid: Author considers NAT to be a security mechanism, and specifically cites Windows ICS as the example... I've personally had Windows machines owned by infected machines on the same segment.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
1980s Real Estate
1990s Tech Stocks
2000s Commodities
2010s IPv4 addresses
...how many patents related to IPv6 were filed until now?
http://cr.yp.to/djbdns/ipv6mess.html
-paul
Why is it that problems never seem to get corrected until they are well and truly disastrous in scope.
We should just censor half the internet and reclaim those IP addresses! That should solve the problem and give us plenty of time to move to IPv6!
Hey, it looks our "tech-aware" government is already trying that -- never mind!
Finally we will no longer have to use this IPv4 NAT garbage with all it's limitations!
We keep running out of IPv4 addresses since 2003 or something. I participated in a RIPE training 4 years ago and according to their statistics, we were supposed to deplete the IPv4 address space during 2009. Well guess what..
When we finally exhaust all IPv4 ips, nobody's going to believe them
Have routers use IPv6 and regular computers use IPv4 and reclaim the IPv4 addresses used by the routers. Use IPv4 tunnelling. I think I've got that right.
Nobody cares, nor needs to, except the ISP's and hosting outfits. If they provide a nice 6-4 proxy (or whichever way around it is), 99.999% of users can continue doing everything they normally do. I've done it on several of my machines in the past, been in the IPv6 net and browsed IPv6 websites to confirm it, and I never once had to touch my IPv4 config or do anything too fancy - certainly nothing that an ISP couldn't do transparently from their side of the net.
It's an issue if you're hosting websites, because then your site needs to be accessible from the IPv6 addresses, but that's an issue for the hosters, most of the biggest of which are managed hosting outfits that can switch that on overnight if they haven't already - if they are allocating static IPv4 addresses, it's just a matter of translating and passing on IPv6 requests for a recognised IPv4 equivalent address to an internal IPv4 network. The root DNS servers are running IPv6 already, etc. There's absolutely nothing to stop this just working on most people's machines today and, no, not every machine needs to upgrade to IPv6 addressing in order to do that. In fact, if anything, suggesting that internal business networks suddenly become IPv6 addressable is the most stupid suggestion in the history of the world - most places just want an "4-6 convertor" in layman's terms and they'll tick along quite nicely on their internal 10, 176, and 192's without caring. Most places would run absolutely fine, the only place it matters is the extreme borders of the Internet.
People don't run IPv6 not because of any of those reasons in the article but because a) they haven't heard of it, b) ISP's don't support it or won't do it for them automatically and c) a lot of OS's never come preconfigured to use IPv6 if it's available. Oh, and of course, d) nobody will care until their IP address allocation requests start getting turned down.
It's not a big deal, it's not going to kill NAT's and 30 years from now there will STILL be local networks, internal VoIP systems, print-servers and whatever else using IPv4 addressing because it's a damn sight easier to leave a working config alone than to upgrade/replace every bit of hardware that touches IP. I can use IPv6 today. There's absolutely no need to until every link in the chain supports it and that's still YEARS away even with US government backing. And even then, IPv4 isn't going anywhere - it's just being superceded. It's like saying that all SSH servers have to switch to SSH2, or all wireless LAN's to 802.11n - it'll happen, and a little nudge won't hurt, but overall people just don't care enough for the majority of cases and their old stuff will still work on IPv4 in 20-30 years time if it's still operational.
Tell me when even 5% of the websites that I use regularly are available over IPv6 and I'll look at setting up my VPS to do the same.
And at every job I've worked in the past 5 years, management has completely had their head in the sand about it. :-( And none of the developers understood enough about IPv6 to push in an even faintly credible way. :-(
I've been running IPv6 on my home network since about 2002. It's just not that hard. In fact, it's a lot easier than running IPv4. My IPv4 home network has a seriously contorted configuration because of the constrained addressing. When I wasn't even given a block of IPs but instead given X number of individual IP addresses it was even worse. My IPv6 network, OTOH, is configured quite simply and obviously.
OTOH, even though I've had an IPv6 DNS server for ages, my stupid registrar STILL does not support IPv6 glue records. It's ridiculous. The standard has been stable enough to do something like that for at least 3-4 years now. I just want to strangle them.
Last I checked, we only have about 200 days before ARIN stops being able to hand out new IPv4 addresses. It's around 7 months. After that, hosts start appearing on the Internet that only have IPv6 addresses. The connectivity breakage will be slow, subtle and inexorable. I bet it takes the tech industry at least another 5 or 6 years before they have to fix the problem or not have customers, and I bet it won't be fixed before then. So very very stupid.
Need a Python, C++, Unix, Linux develop
As an employee for a major electronics retailer, I can see that this whole situation is going to be brutal on the general internet going public, but more importantly it's going to be brutal on me when I have to try and explain to grandma Jones why her internet doesn't work right anymore on her 10 year old computer and how she's going to have to buy a new router/modem/network card/computer. People don't want to deal with ugly inconvienent stuff like the switch to ipv6 (no matter how needed it might be) they just want their stuff to work. I really hope this transition goes a lot smoother than it looks like it's going to, but I don't have a lot of faith that it will.
In a bit of shameless internet panhandling, I accept Litecoin Donations at Lbd2oH9QsthD1GfuUXPyka12YxvWJYnBVf
Exactly. Haven't we been running out of them for at least the last 10 years?
Awesome that no-one ever cared.
I can't see why anyone would now either.
Is it all thanks to Microsoft? Other network equipment? Embedded systems?
Just force all porn sites on the internet to be accessible from IPv6 addresses only.
Serious question. I already have an IPv6 address, why doesn't Slashdot have one?
Follow your Euro bills at EBT
How will we live without one more Justin Bieber fanpage?
So, what are the best ways to profit from this crisis?
Hoarding IP addresses is an obvious way, but that market seems pretty crowded already.
# nslookup -type=AAAA slahsdot.org ns2.dsredirection.com
Server: ns2.dsredirection.com
Address: 204.13.160.55#53
*** Can't find slahsdot.org: No answer
attackers don't only come from the Internet. The "hard shell, gooey centre" security model is doomed now that people are buying laptops, ipads, iphones etc. Mobile devices need to protect themselves, and since everybody is buying mobile devices, upstream network located firewalls are losing their effectiveness.
The Internet's nature is peer to peer - 20050301_cs_profs.pdf
Countries that filter and/or block the internet on a massive scale (e.g. China's "great firewall") should be given no more than ONE /24 ('Class C') for their entire country.
If they insist on keeping vast portions of the internet away from their citizens and others within their borders, WHY the bloody hell should they get address space on that same internet?
Is it not entirelly impossible that IP vendors, network providers, ISPs and hosting companies have already accumulated or say squattered enough 4byte IPs to take advantage of the upcoming IP shortage situation and are not rushing the much needed IPv6 hardware deployment as they should?
What are you for posting the answer to your question in the title of your post, but then posting the question in the body of the comment below it, and then failing to properly end your question with a question mark?
Finally had enough. Come see us over at https://soylentnews.org/
It's the unnecessary use of IPv6 on private networks.
Its really hard to run out of IP4 addresses when IP extension blocks allow transparent extensions to the range of IP addresses. However, there's much more money in IP6 networking conferences and vendor upgrades.
Who last time I checked had two entire /8 blocks.
I'm thinking this will be just as huge a problem as the y2k bug was. Hold on to everything you can and... only some minor issues pop up.
Here's the secret to immortality:
You got plenty of people here who are permanant residents of the state of denial. So why not ask them?
Ask the idiots who year after year come up with "reclaim a handful, that will delay the inevitable for a couple more weeks, so nothing needs to be done" or "NAT, I heard that solves everything! Yeah, I nat my windows XP machine and everything is windows XP so that is the solution!"
People HATE change and HATE having to learn new stuff.
And the longer they put it off, the more they got to keep denying it, else they look silly.
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
is why didn't we just go for an extension?
Normal IPv4 is 4 sections, for IPv6 we could have added 2 sections, making IPs such as:
150.150.150.150.150.150
Simple to understand, minimal hardware & software changes. Of course, some new features will be lacking but in any case...
Putting the remaining 2 sections on separate portion of the packet, keeping the first 4 sections normal, would allow legacy hardware to route these, yet trivial to make new hardware to understand.
We could have even gone for extensible protocol, address minimum if 4 sections, but at will the endpoint can allow for extension of N length.
Thus we'd need only a *single* IPv4 address per ISP for example, and they are free to give out as many as they want from that.
All the midpoints would route these trivially, and the endpoint is the only one needing to translate the last sections, making no tunneling necessary as you could visualize tunnels created automaticly, without any problems.
This would have made minimal to no impact whatsoever for backbone networks at this moment, all it would have needed are:
- Some new edge routers for those who wish to extend
- Software update to operating systems of trivial level
- Instead of Class Cs given for new applicants, you give just a Class D (what is now single IP address)
The transition would have been smooth and easy, and if started when IPv6 came around, it would be supported by now widely by all operating systems, switches etc. only a marginal group of legacy systems do not understand.
Legacy system support:
- They are made to believe they have IPv4 address "Class D"
- Something like NAT is used to translate this based upon MAC address of the NIC.
- No downsides of NAT
- All benefits of NAT
- Basicly the same method "extensions" are being done, this time just in reverse.
- Lightweight
- Downside: Still needs packet manipulation at the switch (edge switch in case of ISPs)
This would have been *über* easy to accomplish, and can be easy to accomplish EVEN TODAY.
New software for some DSLAMS or Edge switches: Do reverse extension address translation. Done deal, no OS updates required for typical home user. Of course, that is very limited support.
OSs need to be updated for full feature set, such as extensible addresses used in typical lower level network tools (ping, traceroute as an example, which typical users DO NOT use).
On Phase 1 it would act 100% just like NAT. No support for servers as of yet tho.
Getting servers of extended IP address to work for OSs not supporting extended IPs is the tricky portion, but as of today is not required (enough IPs to go around for servers at the moment), and could follow up in several years. Those left behind, are left behind, nothing around that.
There are multiple solution routes for that aswell if legacy system are needed to make connection to extensible IP addresses, translations done on the switch. All of these needs to be researched what their impact is.
One solution is to dynamically map reserved areas of IPv4 space, or 1 class A set aside for this. The switch assings for extended IP address an regular IPv4 address from this space, allocated for this MAC address at request time. We manipulate DNS results according to this data from regular response.
- System requests dns for slashdot.org
- Switch detects this and waits for response
- Response is arriving, switch looks into the results: (changed to extended)
slashdot.org. 3583 IN A 216.34.181.45.100.100
Changes response IP to:
224.216.100.100
- connects to 224.216.100.100 (224.x.x.x is reserved/unusable space)
- switch translates that to 216.34.181.45.100.100 and does NAT for the connection
How this is *NOT* done for modern system: Modern systems in the initial request (origin IP) had the extended IP. NAT disabled for this system.
Acquiring IPs:
I'm not familiar with DHCP protocol enough to envision a proper scenario, but my guess is we can extend the protocol trivially.
Please proof me wrong this wouldn't work so i can rest easy.
Pulsed Media Seedboxes
For your information, plan B is ISP NAT and a zero-sum game address transfer market. That would allow us to reallocate upwards of 80% of IPv4's addresses, extending the life of IPv4 some 10 to 20 years. It's not a fun prospect, but it's eminently workable -- perhaps even more so than IPv6.
So, anyone who says there's no plan B doesn't know what they're talking about.
Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion.
Corollary:
If it weren't for the last minute, nothing would ever get done.
Until recently (and probably today still) there was no mechanism to allow a IPv4 host to talk to a IPv6 machine, even if there is address space reserved for the former in IPv6. NAT64 was not being seriously worked on until recently, yet it's obviously absolutely needed; without it, IPv6 hosts need to be dual stacked, ergo have an IPv4 address. What happens when you have both? If IPv4 gets broken for some reason, nothing useful works, so it gets fixed. If IPv6 gets borked, you probably won't even notice because everything is still using IPv4. So in the end many theoretically dual stacked machines are actually single stacked.
I'll never switch to IPv6 with its cold, digital precision rendering of data. The lower resolution of IPv4 just provides a better rendition of old favorites like slashdot, to my eyes anyway. Sure, there's some noise, some clicks and pops, but nothing matches wikipedia seen through a nice tube monitor.
September 2011: Looking for Cocoa/iOS work in Boston area Cocoa Programmer Quincy, MA
Really?
Well, ok, a little recap:
IPV6 has been resisted by virtually all major players, with few exceptions.
IPV6 is poorly tested in the real world. We will see massive problems getting it working.
IPV6 WILL WORK. It will take some time.
IPV6 will coexist with IPV4 poorly, and we will see a dramatic changeover as the critical mass of IPV6 nodes comes online, and IPV4 is more trouble than it's worth to keep around for a little while longer. My estimate, 3 years.
Asia will lag behind in IPV6 adoption.
Some interesting points:
The U.S. Department of Defense holds 11 Class A blocks. If they could reduce their usage to just 3, we could give IPV6 another 3 years of grace. But:
- If we give IPV6 3 more years, it will still take 3 years from then to substantially implement it. And the industry will take those 3 years to avoid the pain.
- The DOD will need at least 5 years to reorganize and give back those Class A blocks. The Navy alone will need 2 years to negotiate with EDS/HP to make the changes. Read up on NMCI and you will recognize a genuine military-grade CF. NMCI is a failure. IPV6 would merely give EDS/HP another opportunity to gouge the service. They rarely miss these opportunities.
- There are several Class A block owners that look like better candidates for either conversion or elimination. None seem ready to do what the DOD would have to do, i.e. spend massive amounts of time and money to make a change for the community, without any real benefit to them.
Just some personal IPV6 observations:
I had two different Fedora distros fail for me at home because IPV6 was turned on and both my router (Linksys WRT54G stock F/W) and my ISPs (Cox and Qwest) fritzed their IPV6 implementations. No, wait, both ISPs had no working IPV6 in the Phoenix area in 2005-2008, despite claims to the opposite. The Linksys I will probably have to reload with something more useful, but it's the early one that can take a lot of new firmware.
Oh, and turning off IPV6 in each Fedora release required different and arcane methods. A hint to the Linux community - common and stable configuration methods would be a blessing. And not just a GUI. I know, security, security, security. I can assure you, my broken Fedora builds were secure, even from me. A stopped clock is right twice a day.
I think my Ubuntu distro left IPV4 on and IPV6 off, but I haven't looked. It works, and has for 3 years.
Despite the clamoring for IPV6, it just has no traction. Why bother yet? Like a lot of things, crisis will have to escalate to failure before this gets fixed.
If Jon Postel were still with us, he would have already made this happen. I miss him so. We need individuals that drive Internet management and administration, not groups. Internet by committee is failing. Can we not find anyone trustworthy to lead Internet functionality at this level?
No, Stallman is not the answer. And nobody at Sun/Oracle either.
deleting the extra space after periods so i can stay relevant, yeah.
Non-IT Companies like Ford doesn't need to be on a list like this at all. Apart from a a few WAN IPs, a webserver, and a mailserver, they could probably put their whole network behind NAT, and no one would notice.
... is increased network isolation.
There are services possible with IPv6 that are not possible, or certainly more expensive to implement, with IPv4 and its partitioning and NATs and all that. Think multi-cast, for instance. Or, ubiquitous IPSEC. Or, working QOS that is what ATT, Verizon, and Google ought to be talking about instead of trying to defeat net neutrality. Those are new building blocks.
There is money to be made in new services, if we get off our butts and transition.
Well, apparently, you only have to fool the majority of people for a little while.
A friend of mine just colocated his server. The colo he used gave him 4 or 5 IP addresses for his single computer. Even though he is running VM's, he does not need 4 IP's.
This kind of thing is happening everywhere. Cleaning up that kind of junk will give us time to convert to IPv6
My large employer has public IPs to the desktop. According to ARIN, my desktop is in a block of over 500,000 addresses owned by the company.
/24!
I'll have you know we're using *over 20* addresses on my local
What shortage?
A simple google of "ipv6 for os x" reveals countless sites discussing how to enable it and test it? So this article says that only Windows Vista and Windows 7 has it but that OS X and other OS's don't? Whats up with that? What exactly are they talking about here?
www.Migrainesoft.com - Computer giving you a headache? We can fix that!
it is gold plated, and we all know what that means: leprechauns and unicorns make your browsing sessions happier
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
Let's just assume we can put IPv4 address exhaustion off for a couple years.
What then? It's a chicken/egg scenario. Let's say I'm a good admin and I move all my outside-facing servers to IPv6.
This assumes All the software we've got (internally and externally developed stuff) is going to work with IPv6 addressing. What are the chances of that happening?
This also assumes that not only is all equipment new enough to do IPv6 properly, but the newer stuff all properly supports it. That's also not much of a concern if I can't even get IPv6 addresses from my upstream provider.
FOr the most part, I think IPv6 is a problem looking for a solution. The huge mental jump for administrators and the added burden it adds to day-to-day crap (mail admin would be so much fun with IPv6 addresses in logs, don't you think?) alone makes it something that many people want to put off. It doesn't matter if I can do the hex/arabic transition in my mind; remembering that much more between looking @ one log to the next is going to be a headache. And yeah, I really want to start typing lengthy hex strings into network configurations (whether it's BIND or a Cisco or something else).
The 'shortage' of IPv4? Somehow, it doesn't seem like the bigger shops are much concerned. Likewise, there always seems to be an abundance of allocation: if indeed it were a limited resource, someone, somewhere - aside from a regulatory board or a sensationalist author looking for his pay day - would be taking notice.
Even though these netblocks are allocated does not mean they are used. Clearly, there is surplus as of now - there is more supply than demand, because they still exist.
I'd think there'd be
Here's another idea: why didn't they just expand the address space by x256 by prefixing it another couple bits? Would that not have been enough? They could have then put their added security extensions on that "IPv6" stack as an optional extension instead of a prerequisite, and humans would still be able to read the "quads" (which would now be a quint).
~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
one of germanys greatest it news sites just deployed ipv6/ipv4 dual stack today.
just migrate everything to facebook.com.
We don't need a geek squad on this, just a few talented war fighters, some laptops, and 24 hours.
First and foremost www.slashdot.org needs an AAAA record.
Second take 6to4, teredo and all of anycast transition technologies not directly tunneled to the ISP and toss them out the fricking window and run over them with a steam roller. Microsoft and Apple should release a patch to just disable all of this shit in their respective operating systems and flat out ignore 2002::
They are great for hackers or people who want to "play" but they will never scale to Internet level and their existance is just making the transition more difficult as content providers field endless complaints of slow or unreachable sites after they start advertising AAAA.
By having the masses (unknowingly) jump the gun or supporting enabling technologies to jump the gun you are actually throwing a wrench into what would otherwise be a managable transition. IPv6 configuration is effortless, instant and automatic. Much more so than IPv4 DHCP ever was but to think that unoptimized overlay networks can even come close to supporting Internet scale traffic is rediculous and absurd.
One point slipped my mind, and I realized right after hitting submit that I had forgotten to include it:
The reason I say it would be "better" if everyone had a public IP address is that it would make it much simpler for user-to-user direct communications (voice/video chat, remote backup to a friend or relative, games, file transfer, remote administration/tech support [e.g. I use VNC to assist my parents with computer problems, but had to setup port forwarding for that to work - but they have two computers, which complicates things since you can only port forward to one device, unless you use different port for each device], etc).
I hope we run out of IPv4 addresses tomorrow. Small business owners can make this transition from most IT firms for a low cost. Larger corporations will take a nice hit however warnings have been made for years that this day would come. Showing more concern for quarterly statements than functionality and redundancy on network infrastructures only shows how much more the board members should pay attention when the network admin says "Hey, do this or we will get stuck in a bind one day".
Scaling your network for the future is a responsible precaution that most boards do not take seriously.
There are two points here that make me think that it's never going to happen.
1) Scarcity drives up value. If it starts to become hard to get IPv4 addresses, then this is just the excuse that an ISP would want to start -charging- for public addresses. Want a real IP address? Oh, that will require a business account and an extra $100 a month please.
2) It's in their interest to make your internet the least useful possible. That private IP address making it imposable to do anything other the email and web browsing? Great! Just more bandwidth they can oversell.
3) Because of 1&2 companies that have become little more then hallow husks (AIM?) or bought out by holdings firms that no longer have any use for those swaths of IPv4 addresses that they have been assigned suddenly have a new 'profit center'. Selling off chunks to other companies for a profit.
IPv6 is never going to happen.
That's the start of your problem right there. Their products are a waste of otherwise perfectly good sand.
"The bad news is, nobody will do anything about critical infrastructure protection until there's a global catastrophic failure. The good news is, there will be a global catastrophic failure." --- Mark Rasche, former head of the United States Department of Justice computer crime unit.
The market is handling this in the most efficient way for *it's* purposes. There is no reason to spend a penny switching yet, because IPv4 addresses are still free and because there is no scary danger to be avoided. Those addresses will rise in value slowly as scarcity increases. Sure, some people or companies will take IPv6 addresses before they have to and won't be accessible to portions of the Internet. So what? Everyone troubleshoots issues like that all the time. This will be a pretty easy one to figure out. They'll find out the reason and do something about it if they care - IPv4 addresses will still be out there for a cost. ISP's that run out and can't get more will consolidate first, then lose customers to other ISP's that can offer addresses. Awareness, support and momentum will ramp up together. This will all go off quite smoothly even if no one spends a single minute planning it or worrying about it. Get a grip.
Didn't they only break backwards compatibility when they gave up on PowerPC and switched to Intel chips with Tiger?
Kinda-sorta.
OS X on PPC would run Classic (pre-OSX) apps, but did so by actually running OS 9. It was similar to VMWare Fusion works on Intel Macs today. OS 9 was actually running, but the desktop was hidden and OS 9 apps were each given their own window so that they seemed to play alongside OS X native apps. If you wanted to, you could display the OS 9 desktop or even reboot directly into OS 9 (if you needed to run a game or something else that couldn't tolerate the overhead of OS X).
It was pretty ugly and a lot of people swore off using it as soon as they could; having the Classic environment running soaked up a lot of resources on typical hardware at the time. It was certainly not a seamless attempt at backwards compatibility in the way that Windows has typically at least tried to maintain (at the expense of being uglier in other ways, granted).
"Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
NAT is not problematic because 65K ports is insufficient. It's problematic because some protocols are inherently incompatible with NAT. FTP in active mode, for example, runs into problems with NAT traversal because it uses randomly selected ports, and that's when only the client is behind NAT. If both the FTP server and client are behind NAT, the protocol is broken completely and some sort of proxy or ALG will be required.
There are other examples of widely-used protocols that have trouble with NAT traversal. Anything involving randomly selected inbound ports is potentially problematic.
And yet Slashdot is STILL not routable over IPv6, but Netflix (ipv6.netflix.com)
I remember when they first came out with IPV6, they kept saying there will not be a "flag day" or a "banner day" or some language to that effect meaning that people will not be forced to move to IPV6 until they wanted to. But the way it is looking one day (even with the stop gap NAT ideas) IPV4 will collapse. On that day we will all look at each other and try to figure out how to move to IPV6. But we will not be able to move quick because our vendors will not supply solutions till all their people learn about IPV6 and then migrate their software and hardware to it. In other words we are screwed, this is going to collapse and somebody better figure out a bandaid that will make this work the way it should so that IPV4 and whatever new protocol comes along can co-exist and talk with each other.
Julian
I own blocks of IPv4 addresses, yes a query to ARIN produces my name. I own many Domain Names (my DNS bills are substantial). I also own several IPv4 blocks because I purchase a business account for my home internet connection; these ones aren't ownership, but part of product agreement from the ISP I go through. I have co-los directly connected into Yahoo's backbone in the NBC building downtown San Diego. I have considerable network resources, for personal use and as nerdy as it is... I'm proud.
The IPv6 problem largely persists because there is 0 infrastructure support. When I say infrastructure, I mean everything from the AT&T copper telecommunications level all the way to the consumer level Service Providers like Cox Cable or Road Runner services. Almost all "IPv6" solutions a consumer can find is nothing more than a IPv6 WAN configuration scheme between you and your ISPs first router and their router does IPv6 to IPv4 translation for all requests. Some companies might have their own IPv6-to-IPv4 translators on the routers facing their upstream providers... again this isn't connected to a IPv6 "internet". The IPv6 support found in software primarily seems to most revolve around one requirement "translation to IPv4".
I know this might hurt a lot of feelings. Bind Ping, a lot of FOSS software has "native" IPv6 support and I'm not debating this. What I'm pointing out is none of it is anything more than experimental code as there is no real means of testing any of it on a real life network. I have faith in it, yes but I have a hard time thinking it could have been extensively tested on a real network.
I realized all of this after trying to get my co-los on a hardcore, pure, real-life IPv6 network with network addresses and all services go. Even up to the point where IPv4 wouldn't work at all. It logically can't be done at this point in time; there are no big time upstream providers in Southern California that can provide a real IPv6 link, even to businesses such as mid-sized ISPs let alone to consumers. This is the problem, without infrastructure support... all we are doing is translation and pseudo-WANs running on top of IPv4.
All the telecommunication companies need to jump on board. All the major universities need to abandon IPv4 for communicating with each other (effectively converting the major backbone of the internet to IPv6). We need the translators to be in primarily reverse, IPv4-to-IPv6 instead of IPv6-to-IPv4. We need all the major ISPs to start offering IPv6 to the consumer. This is the easy part I think, consumer doesn't care or know the difference.
Seems there are places with lots and lots of spare addresses. They should sell them off in chunks of 256 (255.255.255.0) for $200/yr lease.
IP-Trader.com coming soon.
When will the ISP have IPv6 and give out free modems for people with old ones that can't do IPV6?
comcast is still testing IPv6 full roll time line?
ATT roll out?
smaller cable co's? some are still on D2
small town DSL systems?
small town ISP's?
Funny thing about that theory is that nearly everyone I know who owns a Mac runs Windows on it (via Parallels or some such virtualization layer) so they can keep their backwards-compatibility.
The Web is like Usenet, but
the elephants are untrained.
Please God those statistics never get read in congress, else the government safety inspectors will be wanting to install a shower cam in every bathroom.
The Web is like Usenet, but
the elephants are untrained.
much easier to nat them and make them pay the cost (+ margin) for an ipv4 address if they want one
Comment removed based on user account deletion
I don't know that this would necessarily deal with ALL transition problems, but I had an idea a couple years ago about how you might come up with a collection of transition technologies that work together to make the transition a bit easier, which I posted in my Journal:
http://slashdot.org/journal/215899/A-NAT-DHCP-amp-DNS-Based-approach-to-IPv6-transition
In a nutshell, it seems to me that since the IPv6 address space is so large, you can have many, many hosts where the last 4 bytes of the address are all the same, as long as some part of the rest of the address is different. Seems like you could exploit this fact to give the same 'public' IPv4 addresses to different hosts on different networks (every network could have it's own /16, /8 or even it's own private complete IPv4 address space, internally). Between the Internal network and the IPv6 'public' Internet, you have a gateway which transparently hides the IPv6 details from IPv4 applications/devices. Some of the 'internal' IPv4 addresses would be used for local hosts on the networks, and some of them would be used to establish mappings to the 'real' IPv6 addresses. IPv4 applications could access IPv6 hosts either by making a dns request for the host by domain name (which would trigger the gateway to automatically setup a temporary mapping as discussed above), or if the host you want to contact does not have a 'real' domain name, a special dns entry which encodes the IPv6 address in the domain name, then is parsed by the dns server, which again triggers an automatic mapping between the IPv6 address and a local IPv4 address.
For connections the other direction (e.g. from an IPv6 host to IPv4), it really ridiculously easy - since the entire IPv4 address-space can fit in a subnet of an IPv6 network address, you can just form public IPv6 addresses of the form network-prefix:IPv4address (e.g. if your network prefix is 1234::5678, the IPv6 address of a machine whose 'internal' IPv4 address is 12.34.56.78, becomes 1234::5678:0C22:384E - 0C22:3844 is the hex equivalent of 12.34.56.78 - but users will generally not need to worry about that, as they'll usually be looking up hosts through either DNS, or by making connections through a service like an instant messenger client, bittorrent tracker, game server browser/matching system, etc, where they never even see the address, like the way things usually work nowadays with IPv4).
I've not really heard anyone else describe such a system, but I don't see why it's not possible?
Paint stripes on it.
That ought to scare people into compliance.
September 2011: Looking for Cocoa/iOS work in Boston area Cocoa Programmer Quincy, MA
There is an easier solution. If even one very key service provider (Google, for instance) announced that:
just watch how quickly the ISPs would implement at least some mechanism for IPv6 to work. Depending on how aggressive the provider was prepared to be (think signed plugins that verify a workable, routed IPv6 address), it could even force a proper IPv6 implementation, with the ISPs educating their users to ensure a quick, smooth transition.
* Sure, some users will just click-through if the ISP provides a filtered version with a bad certificate, but not all, and the ISP does not want to just throw away business.
What about all the email marketers? They only need one IPv4, not a /17 (Yes, they are out there).. Start reclaiming some of those..
174.123.61.34: mail.rentpink.co.cc 5
174.123.61.35: mail.vonpink.co.cc 2
174.123.61.36: mail.alneedthings.co.cc 3
174.123.61.37: mail.bineedthings.co.cc 2
174.123.61.40: mail.caneedthings.co.cc 2
174.123.61.41: mail.chneedthings.co.cc 6
174.123.61.43: mail.deneedthings.co.cc 4
174.123.61.44: mail.epneedthings.co.cc 6
174.123.61.46: mail.fineedthings.co.cc 4
2.103.90.212.in-addr.arpa domain name pointer natan.vendaagil.com.
3.103.90.212.in-addr.arpa domain name pointer felina.comprecomestilo.com.
4.103.90.212.in-addr.arpa domain name pointer dartaian.rapidasofertas.com.
5.103.90.212.in-addr.arpa domain name pointer natan1.vendaagil.com.
6.103.90.212.in-addr.arpa domain name pointer felina1.comprecomestilo.com.
7.103.90.212.in-addr.arpa domain name pointer dartaian1.rapidasofertas.com.
8.103.90.212.in-addr.arpa domain name pointer natan2.vendaagil.com.
9.103.90.212.in-addr.arpa domain name pointer felina2.comprecomestilo.com.
10.103.90.212.in-addr.arpa domain name pointer dartaian2.rapidasofertas.com.
11.103.90.212.in-addr.arpa domain name pointer natan3.vendaagil.com.
12.103.90.212.in-addr.arpa domain name pointer felina3.comprecomestilo.com.
13.103.90.212.in-addr.arpa domain name pointer dartaian3.rapidasofertas.com.
14.103.90.212.in-addr.arpa domain name pointer natan4.vendaagil.com.
15.103.90.212.in-addr.arpa domain name pointer felina4.comprecomestilo.com.
16.103.90.212.in-addr.arpa domain name pointer dartaian4.rapidasofertas.com.
17.103.90.212.in-addr.arpa domain name pointer natan5.vendaagil.com.
18.103.90.212.in-addr.arpa domain name pointer felina5.comprecomestilo.com.
19.103.90.212.in-addr.arpa domain name pointer dartaian5.rapidasofertas.com.
20.103.90.212.in-addr.arpa domain name pointer natan6.vendaagil.com.
21.103.90.212.in-addr.arpa domain name pointer felina6.comprecomestilo.com.
22.103.90.212.in-addr.arpa domain name pointer dartaian6.rapidasofertas.com.
23.103.90.212.in-addr.arpa domain name pointer natan7.vendaagil.com.
24.103.90.212.in-addr.arpa domain name pointer felina7.comprecomestilo.com.
25.103.90.212.in-addr.arpa domain name pointer dartaian7.rapidasofertas.com.
26.103.90.212.in-addr.arpa domain name pointer natan8.vendaagil.com.
27.103.90.212.in-addr.arpa domain name pointer felina8.comprecomestilo.com.
28.103.90.212.in-addr.arpa domain name pointer dartaian8.rapidasofertas.com.
29.103.90.212.in-addr.arpa domain name pointer natan9.vendaagil.com.
30.103.90.212.in-addr.arpa domain name pointer felina9.comprecomestilo.com.
Broken up into /27's but the whole /20 seems to be the same..
Block and forget?
They portscan anyway so will find it, plus shifting the destination port stuffs you up at the other end when the firewall won't let you out. There may be a nice little hole to let ssh out on 22, but port 2525 or whatever, nobody uses that so you'll hit the firewall rules to stop malware from spreading. The days of firewalls letting all internal traffic get out should be long gone. You can only change the port when you control both ends and can be sure that nobody in the middle is going to stop you. So that means pure point to point and you can forget about getting in via a hotel connection or somebodies WiFi.
Even if you put another server on port 8080 people may not be able to get to it. As a nasty transitional hack I had a webmail system for travelling employees that was on there, and some of them just could not get to it due to hotel networks blocking that port so I had to move them back to the old web server. While it's supposed to be a standard port not everyone who sets up firewalls cares.
Virtually all the growth on the Internet since has been about various companies posturing to make money at all levels. Governments, and Businesses, and Individuals have all been feeding at the Internet trough now since about 1991 when appropriate use was withdrawn. Most of the posturing is done now and the bid providers have us about where they want us. No matter what we pay, our circuits degrade as fast as the providers can oversell them Unlimited circuits aren't unlimited. The lack of Committed Rate in consumer circuits leads to wide swings in throughput for consumers. I have Comcast Business Internet, but I am on the same coax as my home service neighbors. When they all jump on (torrenting their hearts out no doubt), my business circuit goes to about 10% of what I am supposed to be getting. That is a joke, providing alleged business class services inside a consumer network.
Anyway what I was getting at is that this issue of transition to 6 is almost as old as most of the Internet users. Thirty years ago, adaptation to the IP6 stack was slow because the stack supporting it took almost 1MB of ram. That is certainly not a credible concern today where home machines have gigs of ram. I can only think that we haven't made the transition because someone has a vested interest in delaying the transition. OF course what is unfortunate about that is the the disruption to our society will be extreme if this is not dome smoothy Between the money the government has paid to the big providers, and the massive dollars collected each month from consumers, the money has to exist to make the changes we need to transition. IF not I want to know where that money went?
Because it is IPv6 ready :)
I'll tell you why we need so many IP's... Many email servers are restricted in the amount of emails per hour they allow from 1 IP. One of our customers has 300.000 subscribers (their own customers!) and about 100.000 are from hotmail. They would like to deliver their email within the hour.
Hotmail will not allow more than X connections and Y emails per session per IP to one of their Z email servers. So I have this special software from port25.com which will allow me to create A virtual mailservers. I just have to feed that software some IP's.
The maximum rate is dependant on the 'reputation' of the IP (see e.g. senderscore.org). A fresh IP is 'cold' and has to be 'warmed up' (it takes a couple of months). A warm IP is therefore an asset to our company.
nosig today