America Runs Out of IPv4 Internet Addresses

FireFury03 writes: The BBC is reporting that the American Registry for Internet Numbers (ARIN) ran out of spare IP addresses yesterday. "Companies in North America should now accelerate their move to the latest version of the net's addressing system. Now Africa is the only region with any significant blocks of the older version 4 internet addresses available." A British networking company that supplies schools has done an analysis on how concerned IT managers should be. This comes almost exactly 3 years after Europe ran out.

America! F-Yeah!

[sinij]

Out of IP addresses? Sounds like a good time to invade somewhere where they mine them!

Re:America! F-Yeah!

[prefec2]

They already found a new source of IP addresses which could support everyone with enough IP addresses to the end of time (which was of course yesterday or the day before or tomorrow, depending on your favorite Youtube oracle). However, the old IP industry does not want the new IP stuff, it might harm their business plans.

Re:America! F-Yeah!

[Ol+Olsoc]

They already found a new source of IP addresses which could support everyone with enough IP addresses to the end of time

Another liberal scare tactic.

We have plenty of IP addresses to go around, and any right thinking American knows that there is a controversy, and that not all scientists believe in this hogwash.

Re:America! F-Yeah!

[Ol+Olsoc]

This is a huge opportunity for IP address brokerage. It's the gold & oil of a new digital era of prosperity!!! And don't be mistaken: As always, the money will trickle down from the rich to the poor!

When God closes one door, Ayn Rand opens another.

Re:America! F-Yeah!

[lister+king+of+smeg]

Out of IP addresses? Sounds like a good time to invade somewhere where they mine them!

If you want to invade somewhere with a crap ton of IPv4 address how about the DOD? They have an entire class A. They have more address than a number of continents.
https://en.wikipedia.org/wiki/...

Or how about big businesses?

IBM 9.0.0.0/8
General electric 3.0.0.08
HP 15.0.0.0/8 AND 16.0.0.0/8
Apple 17.0.0.0/8
Ford 19.0.0.0/8
Haliburton 34.0.0.0/8
Hell the the US postal system owns 56.0.0.08

There are far more than enough IPv4 address to last us several more years they are just sitting in the hands of people that don't use them appropriately.
I am not saying that we should stick with IPv4, we need IPv6 in the long run it just should not be as urgent as it is becoming.
What IANA should do is revoke their ownership of those addresses and give them 6 months or so to restructure their internal networks before assigning there addresses to the rest of the planet.

Re:America! F-Yeah!

[grahamsz]

Like who? MIT Is the only school i see that still has a class A

The most obvious people who should be giving them up are

a) HP - who have TWO class As and I believe around 7 employees.
b) Apple - have a class A and as far as I know don't run any significant external networking.
c) IBM - kinda like apple. they did have a networking business at one point but I believe that's sold to AT&T now
d) Halibutron - just why?
e) Prudential Insurance - wtf? in what possible world do they need 16 million external addresses?

Re:America! F-Yeah!

[bbn]

You found enough /8 blocks to distribute one or two to each region. It would be gone within the week.

APNIC and RIPE have been out for years now and ARIN is building up a waiting list. The demand did not just stop - there is a huge unfilled demand there that will soak up any stray addresses you can find.

But the real problem is that there is no legal framework to force these companies to stop using the addresses. How much worth is an IP address that can not be used by an Apple device?

Re:America! F-Yeah!

[unixisc]

Not just that, one would have to prove that the entities that need these IP addresses can't use the abundant supply of IPv6 addresses. At the client end, all the major OSs - Windows 7-10, OS-X/iOS, Android/Linux, BSD - support IPv6. The only ones that don't - Windows XP and earlier, OS/2, Amiga, and other ancient platforms. So the real pressure would be at the end of network equipment guys - the Ciscos, the Junipers, the Foundrys, the Brocades as well as the AT&Ts, T-Mobiles, Sprints to make sure they support it.

And finally, the websites - they'll all need to have IPv6 paths to themselves as well.

Re:America! F-Yeah!

[musicon]

Here's the rub -- if the company owns significant address space, they're likely using it for their internal systems as well, not external access only.

I worked at Eastman Kodak for a number of years (who, at least at one point, owned a significant amount of public IP space) and we used public IPs for all of our internal systems as well, no NAT'ing private address ranges.

TLS SNI

At this point, ISPs need to mandate that customers use SNI where possible; too many IP addresses are allocated just for an SSL certificate. I think we'll start seeing more Let's Encrypt-type Subject Alternate Name management tools, too.

Re:TLS SNI

[ledow]

Agreed. If you aren't capable of using SNI, then chances are your server software, client, etc. are not fit to be on the Internet anyway.

IE6, Firefox *1* (!), Chrome 4. If you're still using those, get something else immediately because your security of the certificate is then the LEAST of your worries.

I'm waiting for the "Let's Encrypt" to start issuing certificates. When that happens, interesting things will happen in the SSL/TLS certificate market.

Again?

[xxxJonBoyxxx]

>> America Runs Out of IPv4 Internet Addresses

Again?
http://arstechnica.com/informa...
http://www.zdnet.com/article/n... ...

Re:Again?

[Dagger2]

No, not again.

Last year, ARIN hit one /8 left (that's the second article you linked). Back in July of this year, ARIN had to make their first ever refusal for an allocation on the basis of not having the IP space for it (that's the first article). They still had some space remaining for small allocations. Now, as of yesterday, they have to refuse all allocations on that basis, because they ran out of space altogether. That's this article.

Apparently, the idea that reaching 0% involves going through 10% and 1% first is hard to grasp...

Re:Move to the latest version?

[prefec2]

As most people do not type these number and do not need to remember these numbers, I do not see any problem with longer numbers. Especially when there are methods to write them shorter than that: 0000::0000::0000::0000::0000::0000::0000::0000
For example zeros ca be omitted. see also https://en.wikipedia.org/wiki/...

Re:Move to the latest version?

[ledow]

If you are typing or using IP addresses for ANYTHING other than you primary DNS servers, you're doing something wrong.

Seriously - set statics on your DNS servers (which can even be IPv4!), plug that into your DHCP etc. servers. Done.

This is the problem with IPv6 - those people whining about it aren't in charge of networks where it could be an issue anyway.

P.S. likely your mobile phone and maybe even your cable setup has been using IPv6 addresses for a few years now. They are specified and necessary in related standards. Did you notice? No. Because nobody types in IP addresses any more, not even on their home networks, work networks, thousands of servers, etc.

To be honest, MAC addresses are much more problematic to me, but I barely ever have to type those either.

Ill sell mine for a meelion dollars

[coolmoe2]

Bring on the rush of IPv4 squatters now...

My IP Address

I just checked my IP address and it's 192.168.1.102. Whew, I'm glad I got one before they ran out. No one else can have my IP address!

Re:My IP Address

[fnj]

Mine is 127.0.0.1 and I've had it for ages.

Re:My IP Address

[sinij]

Mine is 127.0.0.1 and I've had it for ages.

Why do you have all my files? I will have to send you DMCA notice.

Three years after Europe ran out?

No, that's just an artifact of the different policies for assigning the last addresses. RIPE (the European registry) throttled assignments by making the requirements much more strict. That change of policy was considered the point when RIPE ran out of IPv4 addresses, because the remaining addresses are not given out just for asking. Unlike the other registries, ARIN did not institute a policy to extend the availability of IPv4 addresses for transitioning purposes, so they burned through the last 16 million addresses like no tomorrow and are now truly out of IPv4 addresses to assign. They are in fact the first registry without IPv4 addresses in stock. RIPE still has almost a full /8, APNIC has two thirds of an /8, LACNIC has one seventh of an /8, and AFRINIC still has 2.3 /8 blocks.

Re:Three years after Europe ran out?

[FireFury03]

No, that's just an artifact of the different policies for assigning the last addresses. RIPE (the European registry) throttled assignments by making the requirements much more strict. That change of policy was considered the point when RIPE ran out of IPv4 addresses, because the remaining addresses are not given out just for asking. Unlike the other registries, ARIN did not institute a policy to extend the availability of IPv4 addresses for transitioning purposes, so they burned through the last 16 million addresses like no tomorrow and are now truly out of IPv4 addresses to assign. They are in fact the first registry without IPv4 addresses in stock. RIPE still has almost a full /8, APNIC has two thirds of an /8, LACNIC has one seventh of an /8, and AFRINIC still has 2.3 /8 blocks.

Well, not really... RIPE, APNIC and APNIC reserved the last /8 for "IPv6 transition" (i.e. an extremely restrictive allocation policy). ARIN reserved the last /10 for the same purpose. So 3 years ago, RIPE hit the last /8, now ARIN have hit the last /10. They all still have addresses to hand out, but in all cases (except Afrinic) the allocation policies are now so restrictive that for practical purposes you can consider them "out".

Ipv6 adoption isn't that bad

According to google's ipv6 stats, about 21% of its American visitors access the site via ipv6.
https://www.google.com/intl/en/ipv6/statistics.html#tab=per-country-ipv6-adoption&tab=per-country-ipv6-adoption

That is not as high as Belgium (almost 36%), but it is a start.

Re:Ipv6 adoption isn't that bad

[KingMotley]

It is also interesting to dive into those stats and you will notice a significant uptick of availability on weekends for north america. ISPs aren't the biggest offenders, nor is your home router, it is your company's routers and network that are the worst of the bunch here.

Re:Move to the latest version?

[hairyfeet]

The problem with switching is IMHO three fold, 1.- It is gonna cost probably a couple hundred million in routers and modems that cannot support IPV6, in fact if you look at places like Amazon and Newegg there are more routers being sold that doesn't support IPV6 even today than not, 2.- Years of treating IT workers as disposable means we simply do not have enough workers that can support all the headaches that are gonna happen with the switch, I know in my area most of the greybeards simply went into other fields because they were tired of being fucked by the MBAs, and my own personal beef 3.- Assigning everyone a unique IP means it will be trivial to track everyone, its gonna be meat on the table for your *.A.As and copyright trolls.

So you can see why switching hasn't bee a priority for most, its gonna cost a mint, shit is gonna break everywhere, and I wouldn't be surprised if it will end up with a shitload of requests from the *.A.As spamming the ISPs as they will be able to argue that "IP address does not equal individual" no longer applies.

It's a good study in human nature

[Alioth]

This is actually a good study in human nature. A resource exhaustion (with a solution already in place) we could see from a mile off, but will do nothing about until it becomes absurdly painful to continue. Already we see monstrosities like carrier grade NAT which breaks many applications, rather than moving to IPv6 which nearly every device supports.

We'll see this same procrastinating with AGW, fossil fuels, everything else - we won't do anything about it until the economic damage is already being done and the pain level becomes extreme.

Re:It's a good study in human nature

[FireFury03]

This is actually a good study in human nature. A resource exhaustion (with a solution already in place) we could see from a mile off, but will do nothing about until it becomes absurdly painful to continue. Already we see monstrosities like carrier grade NAT which breaks many applications, rather than moving to IPv6 which nearly every device supports.

We'll see this same procrastinating with AGW, fossil fuels, everything else - we won't do anything about it until the economic damage is already being done and the pain level becomes extreme.

It does seem very similar to climate change, and in both cases I think the bystander syndrome is probably quite strong: for both IPv6 and climate change, "what's the point in me doing anything when no one else is" is a prevalent attitude - a single person can't really change anything, so everyone stands around watching the oncoming train that's about to hit them, but does nothing.

Re:Move to the latest version?

[amalcolm]

Twice as many as IP4? Just one bit!

Re:Boy cries wolf

[Alioth]

The real WTF is that Slashdot has been running IPv6 articles for years...and *still* doesn't support IPv6.

Facebook on the other hand - not a tech site, but a site for angsty teenagers, baby pics, cat memes and partisan squabbling - has supported IPv6 fully for years.

It's embarrassing that a tech site can't do what a non-tech site has been doing for years.

nature's 4-fold harmonic IP addresses

[Thud457]

exactly as prophicised. I knew this was coming when Gene Ray went into hiding.

Re:nature's 4-fold harmonic IP addresses

[prefec2]

I personally require at least one more month to finish my thesis. Therefore, I am totally opposed to an end of world right now. I mean, they waited 6000 years. Plus/minus one month shouldn't be that big of a problem. Or better six month so I can have some vacation and get my PhD from university. However, when I am on /. I might need one more month. Oh flip lets make it a year. How about world end in 2016? God? Jesus? Anybody? Is that too much to ask?

Re:nature's 4-fold harmonic IP addresses

[thegarbz]

I personally require at least one more month to finish my thesis

Or you could just drink beer and hope the world ends before that.

Re:Move to the latest version?

[locofungus]

as they will be able to argue that "IP address does not equal individual" no longer applies.

No they won't. It will make no difference. The ISP will (presumably) assign a /64 (or bigger). I hope ISPs assign at least a /60 otherwise we're likely to end up with a huge mess of hacks in the linux kernel to allow subnetting of a /64 and also some form of autoconfig.

If you use the privacy extensions then it will make zero difference. The RIAA will be able to tell that the traffic came via your router but not from which machine. And if you don't keep logs of which machine used which IP when then nobody will be able to tell which machine was involved.

It may well make things harder for the *AAs. At the moment, ARIN requires that all your existing IPv4 allocations are in use (and hence documented in whois) before they'll give you more (so the data tends to be accurate to within about a 6 months timescale). When ipv6 comes along it's likely that registries will NEVER go back for any more addresses so will have no incentive to update those records. At the moment the RIAA can always tell which ISP an IP belongs to. That may well change in the future and there will be an extra step for them even to locate the ISP so that they can identify the subscriber.

In fact, should more addresses be required from ARIN in the future, it may well be easier to setup a new company to request a new block rather than go back and update years, possibly decades, of records to show that you need that second block.

Re:Move to the latest version?

[Wycliffe]

No thanks. IPv6 addresses are a mouthful, typically 3x as long when printed. We should move to a version that makes them 1 byte longer.

IPv6 was a poor decision. It's like someone who ran out of toilet paper once so they went and filled their entire basement full so they won't accidentally run out again. 192.168.23.17 compared to AB34:34ED:AB34:34ED:AB34:34ED:AB34:34ED
As we're now pretty much stuck with ipv6, they would be better off locking out all the later bits until the transition is complete and make the ipv4 directly translatable. I.e. 192.168.25.25 becomes just FFFF:C0A8:1919 and all other ipv6 numbers are off limits until the transition is complete.
FFFF:C0A8:1919 isn't much more difficult than 192.168.25.25 and would make the transition much simpler than giving everyone a ipv4 number and a completely different ipv6 address.
Doing it this way, everyone could still access the websites via either their ipv4 or ipv6, it would only be the higher order ones that you would need to upgrade in order to access. Similar things have happened with phones and websites. When new area codes were introduced or new top level domains, a few people had problems accessing the new areas with older equipment if the older equipment was hardcoded somehow.

Comments Summarised

[thegarbz]

- What are we running out again? I thought we ran out last month! They are crying wolf!
- IP addresses are assigned by region we only just ran out.

- NAT makes this a non issue. Just use NAT!
- NAT is a broken concept that breaks end-to-end connectivity!

- I won't move to IPv6 they are too hard to type.
- Why are you typing IPv6?

- I can't NAT on IPv6 so it breaks my firewall and its insecure.
- NAT is not a firewall, you can firewall IPv6

- Why don't we just steal some of HP's IP addresses? They have some spare.
- Break the internet by splitting up routing tables even further.

- But NAT has protected us for many years everything works on NAT.
- Everything now needs to connect to a command server. No end-to-end connectivity and nasty workarounds in routers to make applications work.

- But DHCP doesn't work for IPv6!
- DHCP isn't needed, and if it is needed yes it does.

- But we can NAT the NATTING NAT NAT!
- Go fuck your NAT.

Re:Comments Summarised

[locofungus]

You can even NAT IPv6

YOU MONSTER!

This is one place where AFAICT, ipv6 is going to be a problem.

If you're a small company with a couple of different ISPs over a couple of telephone lines for redundancy you've probably currently got your LAN configured with 192.168.x.x or equivalent.

Your firewall/router then NATs that traffic and forwards it out over one or other of the connections. Your users computers don't care.

IPv6 makes this more difficult. In theory every computer on the LAN could have two different prefixes but now the external routing decisions are being made at the users computer rather than at the firewall.

Re:Comments Summarised

[mattventura]

But if the original source machine has already picked which IPv6 source address to use then the firewall has to use the correct ISP (as, hopefully, packets with a spoofed source address will be blocked and return packets will come via a different route so the firewall will probably not like them either.)

No it doesn't. You can always NAT, in both v4 and v6, even if the original source address is a non-private IP. I have 2001:0:0:a::/64 from one ISP and 2001:0:0:b::/64 from another ISP, and I put my LAN clients on 2001:0:0:a::/64, I can still use NAT to change the source IP of packets being routed via ISP #2.

A solution

[azcoyote]

If we just shut down all the porn sites on the Internet, I'm sure we'd get back a good 98% of those IP addresses...

Re:Move to the latest version?

[Dagger2]

Copy/paste them. Or use DNS, it's hardly a new technology.

And if you really can't do either, then pick your addresses better. If you pick addresses like 2001:db8:42:a57e:a92f:2c3d:30c5:7562 rather than 2001:db8:42:1::2 and refuse to use DNS for them, then you can't complain about how hard they are to remember.

Re:Everyone needs an address so you can be tracked

[aaaaaaargh!]

NATs are the biggest pain in the ass for every user, whether they know it or not. They have taken back the internet by decades. Not only are they full of bugs and incorrect protocol implementations, they have forced myriads of developers to spend thousands of hours on unreliable NAT hole punching hacks just to be able to use the internet for what it's intended to. In addition to this,they have frustrated and enraged millions of gamers.

Re:Easily solvable

[quetwo]

The problem with this is that some of the original recipients of those really big blocks like GM and HP were given those addresses, not leased them. They, for all practical purposes, own that address space.

I know the organization I work for is a part of the problem. Before ARIN existed, a group of three schools (I work for one of them) were granted a /8 as a part of our research status. We have no relation with ARIN, and there isn't even a way to really give back 100 of the /16's we don't use.

Re:Move to the latest version?

[unixisc]

A lot of the concepts in IPv6 are new in that one need not remember them. Unlike in IPv4 where they have to be requested by the hosts, in IPv6, they are automatically assigned by the Router Advertizements and Neighbor Discovery. And most of them never need to be remembered or copied or anything. Also, in IPv6, each node can take multiple IP addresses, so one can always assign a static easy to remember address as one of the addresses if remembering is what is required.

Re:Move to the latest version?

[Midnight+Thunder]

No thanks. IPv6 addresses are a mouthful, typically 3x as long when printed. We should move to a version that makes them 1 byte longer.

You know that's not much longer and it will not break anything, well at least that's what marketing told me. The engineers keep on telling me that even 1 extra bit will break everything, but what dot they know? Something about assumptions of 32-bit fixed size. Whatever that means? Aren't they paid enough to do their magic and satisfy the business requirements set out by marketing, instead of pushing back?

Re:Move to the latest version?

[thegarbz]

IPv6 was a poor decision. It's like someone who ran out of toilet paper once so they went and filled their entire basement full so they won't accidentally run out again.

There's technical reasons for the length as by assigning humongous blocks at a time routing is greatly simplified.

But again why are you typing IP addresses? This is 2015! IPv6 even includes stateless auto-configuration so you don't even need to figure out which IP addresses to type into your DHCP server anymore.

You're talking as if these are given out by hand. Giving a computer an IPv4 address or 2, or 5, should be absolutely no different in complexity, not for an administrator and not for an end user.

Re:Move to the latest version?

[GuB-42]

If you have trouble remembering IPv6 addresses, you can write them in a text file, like this :
1234:5678:9ABC:DEF0:1234:5678:9ABC:DEF0 mycomputer1
1234:5678:9ABC:DEF0:1234:5678:9ABC:DEF1 mycomputer2

Let's call this file "hosts". But I understand that copy-pasting can be annoying, it would be so much better if the system could use it natively...

But we can go even further! Instead of copying this file between computers we could make some kind of way to synchronize and distribute these files so that it could be always up to date and accessible from anywhere, like some kind of distributed naming scheme (we could call this DNS). If only we had this...

Re:Move to the latest version?

[rahvin112]

How can you be so ignorant of how IPv6 works and still have the hubris to propose a modification that supposedly fixes it?

Oh silly me, this is Slashdot.

Re:I know where to find 4 full class C's right now

[Dagger2]

Ah, four class Cs. That should satisfy demand for a good 2 minutes or so.

v4's problem isn't that parts of it are unused. It's that it's just too small. Returning little blocks here and there won't fix that.

Re:Move to the latest version?

[unixisc]

IPv6 was a poor decision. It's like someone who ran out of toilet paper once so they went and filled their entire basement full so they won't accidentally run out again. 192.168.23.17 compared to AB34:34ED:AB34:34ED:AB34:34ED:AB34:34ED As we're now pretty much stuck with ipv6, they would be better off locking out all the later bits until the transition is complete and make the ipv4 directly translatable. I.e. 192.168.25.25 becomes just FFFF:C0A8:1919 and all other ipv6 numbers are off limits until the transition is complete. FFFF:C0A8:1919 isn't much more difficult than 192.168.25.25 and would make the transition much simpler than giving everyone a ipv4 number and a completely different ipv6 address. Doing it this way, everyone could still access the websites via either their ipv4 or ipv6, it would only be the higher order ones that you would need to upgrade in order to access. Similar things have happened with phones and websites. When new area codes were introduced or new top level domains, a few people had problems accessing the new areas with older equipment if the older equipment was hardcoded somehow.

The stuff you are describing was initially contemplated, which is why we had IPv4 compatible addresses (::192.168.2.5) and IPv4 mapped addresses (::ffff:192.168.2.5). Problem was that that wasn't a simple way to resolve the addresses due to NAT in IPv4 among other things, which is why you have different transition mechanisms. Some of them have been used, like 6rd, Dual-Stack lite, Teredo, et al.

The toilet paper analogy is not quite correct. Rather, it's more like a case of discovering a new fuel that's a million times cheaper than gasoline, doesn't emit greenhouse gases, but which would require all engines worldwide to be changed. Since that would be an expensive process, the guys who design the replacement engines are working w/ the fuel engineers to ensure that the engines would never need to be redesigned again. In the case of IPv4, even making it 33 or 40 or 64 bits would have required an overhaul of all the world's networking gear, which is why the jump was made to 128 bits.

They exist. Prices still low. New digital divide?

[Ungrounded+Lightning]

This is a huge opportunity for IP address brokerage.

You mean like ? They already exist, and have for a long time.

IPv4 addresses seem to be going for about $8 to $9 at the moment, in blocks of 256 or larger. That makes a class-C allocation worth less than $2,500. So I doubt there's a crisis just yet. Not even worth the trouble of pursuing it - and the hassle of retweaking your routers and ISP relations - if you happen to have some you could part with.

But it will be interesting to watch the prices now that the US registry has announced that it is "officially out" of address. That will tell us if/when reshuffling is insufficient to hold off a real crunch but IPv6 adoption is still inadequate to mitigate the need.

It will also be interesting to see if a new digital divide develops, with some people still without IPv6 connectivity and stuff they want only available via IPv6. (Again, I doubt it will be an issue.)

Re:America or just the US and Canada?

[Yaztromo]

I hate technicalities, but the RIR for Latam is LACNIC. Oh, poorly chosen demonyms.

LACNIC ran out on June 10th, 2014.

That, and if we're going to be technical ARIN covers more than Canada and the US, also covering man island nations in the Caribbean and North Atlantic.

Yaz

IPv4 address un-retrievable b'cos....

[unixisc]

Big reason for that would be that at the time they did it, it was on equipment that used IPv4 as it was then - without NAT. NAT was only something that came later to 'address' the shortage of addresses. But at the time that these networks were set up, the protocol didn't have that, and therefore, they had to use public IP addresses for both their internal LANs as well as their outward facing boxes.

Re:IPv4 address un-retrievable b'cos....

[bsdasym]

Just FYI, NAT was not created simply because of the impending IP exhaustion; That's one reason, but many people were using it (and still do) for other reasons.

It provides enhanced security for one. It also makes it much easier to move your company or branch office from one ISP to another, which will end up in you receiving a new IP block if you aren't an AS. Likewise it's simpler to multihome a corporate network for redundancy if you don't have to renumber your entire network. For these reasons and more, NAT was very popular even among people that didn't believe the address space would ever really run out.

Also, there's nothing about NAT in "the protocol" -- all that was required to implement it was hardware and imagination. The assignment of the private address space helped, but was not required. Before the blocks for private address space were reserved for that purpose, admins would use unregistered IP space. It was pretty common to see people just picking random unallocated IPs back then and using them on their LAN. I've even seen actual registered/assigned space used as private space, if you don't care that you can't communicate with the true holder of that space; e.g. the DoD has 13 different /8's that no average person is ever going to connect to or route over.

For some interesting history/backstory from the horses mouth: http://www.jma.com/The_History... -- just scroll down past all the photos.

The eggheads did see exhaustion coming though, and saw it early. If you really want to facepalm, consider this: IPv6 deployments started in 1999. At that point, there were still over 120 unassigned /8's. 16 years later, IPv6 almost accounts for 10% of the unique source addresses seen by google. Some good news, the US is leading (in something good for once) in adoption, with deployment here over 20%. Only Belgium and Switzerland have greater penetration.

That said, Kodak is (was?) one of the old boys. They have a /16 dating back to 1987, so they fit your description well; there really was no option back then but to give everything a "real" IP.

Re:IPv4 address un-retrievable b'cos....

[unixisc]

The primary reason that NAT was invented was address exhaustion. All of the other benefits you mention were side benefits of NAT, some of which are useful enough that they've been brought back into IPv6 in the form of NAPT.

The protocol having nothing about NAT has been one of the boondoggles about it, which is why the IETF defined a standard in IPv6, even though it advocates not having NAT at all. You have static NAT, dynamic NAT and PAT. The last one is what erodes the available ports and causes things like mapping software to draw out maps a few blocks at a time, instead of all at once. Reason - the ports, which the maps need, is being eaten up by the addresses.

Preserving your addresses as you move ISPs is a useful feature, as I mentioned, but that's achievable by private addresses in case of IPv6 (public addresses just aren't needed) and Unique Local addresses (fd00::/8) in case of IPv6. Any organizations internal IP structure can be built on ULAs, and even VPNs can be built on those. There is no difference b/w IPv4 and IPv6 here, except that in the case of IPv4 today, one has to marry those private addresses to the handful of public addresses that the site has, since there are usually not enough public addresses for all the equipment. Also, IPv6 eliminates the need for virtual hosting: every host can have its own unique address. As can every department in an organization, thereby enabling separation of access above and beyond file system level access controls.

The enhanced security bit has been addressed ad nauseum on /. What provides that security is a firewall, and it's a script that can be written as easily for IPv6 as it can be for IPv4. In both Linux as well as BSD.

I had mentioned the US leading in adaptation in my IPv6 day contribution in this page: How ready is IPv6 to succeed IPv4?

Re:Easily solvable

[thegarbz]

Good. No really good. IP addresses are designed to be issued in blocks to networks with sub-blocks to be issued to groups within the networks. Not doing that results in bloat of the routing tables which are experiencing exponential growth and are already quite close to the point where things start breaking (due to the hardware limits of the size of some routing tables)

Splitting up a /8 into 100 other components and distributing them across different networks around the world is NOT a solution, or at least it is a very temporary solution which at the same time creates a far worse problem.