Slashdot Mirror

← Back to Stories (view on slashdot.org)

America Runs Out of IPv4 Internet Addresses

Posted by samzenpus on from the empty-bucket dept.

FireFury03 writes: The BBC is reporting that the American Registry for Internet Numbers (ARIN) ran out of spare IP addresses yesterday. "Companies in North America should now accelerate their move to the latest version of the net's addressing system. Now Africa is the only region with any significant blocks of the older version 4 internet addresses available." A British networking company that supplies schools has done an analysis on how concerned IT managers should be. This comes almost exactly 3 years after Europe ran out.

26 of 435 comments (clear)

  1. America! F-Yeah! by sinij · · Score: 5, Funny

    Out of IP addresses? Sounds like a good time to invade somewhere where they mine them!

    1. Re:America! F-Yeah! by prefec2 · · Score: 3, Funny

      They already found a new source of IP addresses which could support everyone with enough IP addresses to the end of time (which was of course yesterday or the day before or tomorrow, depending on your favorite Youtube oracle). However, the old IP industry does not want the new IP stuff, it might harm their business plans.

    2. Re:America! F-Yeah! by Ol+Olsoc · · Score: 5, Funny

      They already found a new source of IP addresses which could support everyone with enough IP addresses to the end of time

      Another liberal scare tactic.

      We have plenty of IP addresses to go around, and any right thinking American knows that there is a controversy, and that not all scientists believe in this hogwash.

      --
      The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
    3. Re:America! F-Yeah! by Ol+Olsoc · · Score: 3, Funny

      This is a huge opportunity for IP address brokerage. It's the gold & oil of a new digital era of prosperity!!! And don't be mistaken: As always, the money will trickle down from the rich to the poor!

      When God closes one door, Ayn Rand opens another.

      --
      The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
    4. Re:America! F-Yeah! by lister+king+of+smeg · · Score: 4, Informative

      Out of IP addresses? Sounds like a good time to invade somewhere where they mine them!

      If you want to invade somewhere with a crap ton of IPv4 address how about the DOD? They have an entire class A. They have more address than a number of continents.
      https://en.wikipedia.org/wiki/...

      Or how about big businesses?

      IBM 9.0.0.0/8
      General electric 3.0.0.08
      HP 15.0.0.0/8 AND 16.0.0.0/8
      Apple 17.0.0.0/8
      Ford 19.0.0.0/8
      Haliburton 34.0.0.0/8
      Hell the the US postal system owns 56.0.0.08

      There are far more than enough IPv4 address to last us several more years they are just sitting in the hands of people that don't use them appropriately.
      I am not saying that we should stick with IPv4, we need IPv6 in the long run it just should not be as urgent as it is becoming.
      What IANA should do is revoke their ownership of those addresses and give them 6 months or so to restructure their internal networks before assigning there addresses to the rest of the planet.

      --
      ---Saying gnome 3 is better than windows 8 not so much a compliment as it is damning with light praise.
    5. Re:America! F-Yeah! by grahamsz · · Score: 5, Informative

      Like who? MIT Is the only school i see that still has a class A

      The most obvious people who should be giving them up are

      a) HP - who have TWO class As and I believe around 7 employees.
      b) Apple - have a class A and as far as I know don't run any significant external networking.
      c) IBM - kinda like apple. they did have a networking business at one point but I believe that's sold to AT&T now
      d) Halibutron - just why?
      e) Prudential Insurance - wtf? in what possible world do they need 16 million external addresses?

  2. TLS SNI by Anonymous Coward · · Score: 3, Interesting

    At this point, ISPs need to mandate that customers use SNI where possible; too many IP addresses are allocated just for an SSL certificate. I think we'll start seeing more Let's Encrypt-type Subject Alternate Name management tools, too.

    1. Re:TLS SNI by ledow · · Score: 4, Interesting

      Agreed. If you aren't capable of using SNI, then chances are your server software, client, etc. are not fit to be on the Internet anyway.

      IE6, Firefox *1* (!), Chrome 4. If you're still using those, get something else immediately because your security of the certificate is then the LEAST of your worries.

      I'm waiting for the "Let's Encrypt" to start issuing certificates. When that happens, interesting things will happen in the SSL/TLS certificate market.

  3. Re:Move to the latest version? by prefec2 · · Score: 3, Insightful

    As most people do not type these number and do not need to remember these numbers, I do not see any problem with longer numbers. Especially when there are methods to write them shorter than that: 0000::0000::0000::0000::0000::0000::0000::0000
    For example zeros ca be omitted. see also https://en.wikipedia.org/wiki/...

  4. Re:Move to the latest version? by ledow · · Score: 5, Insightful

    If you are typing or using IP addresses for ANYTHING other than you primary DNS servers, you're doing something wrong.

    Seriously - set statics on your DNS servers (which can even be IPv4!), plug that into your DHCP etc. servers. Done.

    This is the problem with IPv6 - those people whining about it aren't in charge of networks where it could be an issue anyway.

    P.S. likely your mobile phone and maybe even your cable setup has been using IPv6 addresses for a few years now. They are specified and necessary in related standards. Did you notice? No. Because nobody types in IP addresses any more, not even on their home networks, work networks, thousands of servers, etc.

    To be honest, MAC addresses are much more problematic to me, but I barely ever have to type those either.

  5. My IP Address by Anonymous Coward · · Score: 4, Funny

    I just checked my IP address and it's 192.168.1.102. Whew, I'm glad I got one before they ran out. No one else can have my IP address!

  6. Three years after Europe ran out? by Anonymous Coward · · Score: 4, Informative

    No, that's just an artifact of the different policies for assigning the last addresses. RIPE (the European registry) throttled assignments by making the requirements much more strict. That change of policy was considered the point when RIPE ran out of IPv4 addresses, because the remaining addresses are not given out just for asking. Unlike the other registries, ARIN did not institute a policy to extend the availability of IPv4 addresses for transitioning purposes, so they burned through the last 16 million addresses like no tomorrow and are now truly out of IPv4 addresses to assign. They are in fact the first registry without IPv4 addresses in stock. RIPE still has almost a full /8, APNIC has two thirds of an /8, LACNIC has one seventh of an /8, and AFRINIC still has 2.3 /8 blocks.

    1. Re:Three years after Europe ran out? by FireFury03 · · Score: 3, Informative

      No, that's just an artifact of the different policies for assigning the last addresses. RIPE (the European registry) throttled assignments by making the requirements much more strict. That change of policy was considered the point when RIPE ran out of IPv4 addresses, because the remaining addresses are not given out just for asking. Unlike the other registries, ARIN did not institute a policy to extend the availability of IPv4 addresses for transitioning purposes, so they burned through the last 16 million addresses like no tomorrow and are now truly out of IPv4 addresses to assign. They are in fact the first registry without IPv4 addresses in stock. RIPE still has almost a full /8, APNIC has two thirds of an /8, LACNIC has one seventh of an /8, and AFRINIC still has 2.3 /8 blocks.

      Well, not really... RIPE, APNIC and APNIC reserved the last /8 for "IPv6 transition" (i.e. an extremely restrictive allocation policy). ARIN reserved the last /10 for the same purpose. So 3 years ago, RIPE hit the last /8, now ARIN have hit the last /10. They all still have addresses to hand out, but in all cases (except Afrinic) the allocation policies are now so restrictive that for practical purposes you can consider them "out".

      --
      http://blog.nexusuk.org
  7. Ipv6 adoption isn't that bad by Anonymous Coward · · Score: 3, Informative

    According to google's ipv6 stats, about 21% of its American visitors access the site via ipv6.
    https://www.google.com/intl/en/ipv6/statistics.html#tab=per-country-ipv6-adoption&tab=per-country-ipv6-adoption

    That is not as high as Belgium (almost 36%), but it is a start.

  8. Re:Move to the latest version? by hairyfeet · · Score: 4, Insightful

    The problem with switching is IMHO three fold, 1.- It is gonna cost probably a couple hundred million in routers and modems that cannot support IPV6, in fact if you look at places like Amazon and Newegg there are more routers being sold that doesn't support IPV6 even today than not, 2.- Years of treating IT workers as disposable means we simply do not have enough workers that can support all the headaches that are gonna happen with the switch, I know in my area most of the greybeards simply went into other fields because they were tired of being fucked by the MBAs, and my own personal beef 3.- Assigning everyone a unique IP means it will be trivial to track everyone, its gonna be meat on the table for your *.A.As and copyright trolls.

    So you can see why switching hasn't bee a priority for most, its gonna cost a mint, shit is gonna break everywhere, and I wouldn't be surprised if it will end up with a shitload of requests from the *.A.As spamming the ISPs as they will be able to argue that "IP address does not equal individual" no longer applies.

    --
    ACs don't waste your time replying, your posts are never seen by me.
  9. Re:Boy cries wolf by Alioth · · Score: 5, Interesting

    The real WTF is that Slashdot has been running IPv6 articles for years...and *still* doesn't support IPv6.

    Facebook on the other hand - not a tech site, but a site for angsty teenagers, baby pics, cat memes and partisan squabbling - has supported IPv6 fully for years.

    It's embarrassing that a tech site can't do what a non-tech site has been doing for years.

    --
    Oolite: Elite-like game. For Mac, Linux and Windows
  10. nature's 4-fold harmonic IP addresses by Thud457 · · Score: 3, Funny

    exactly as prophicised. I knew this was coming when Gene Ray went into hiding.

    --

    the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff

    1. Re:nature's 4-fold harmonic IP addresses by prefec2 · · Score: 4, Funny

      I personally require at least one more month to finish my thesis. Therefore, I am totally opposed to an end of world right now. I mean, they waited 6000 years. Plus/minus one month shouldn't be that big of a problem. Or better six month so I can have some vacation and get my PhD from university. However, when I am on /. I might need one more month. Oh flip lets make it a year. How about world end in 2016? God? Jesus? Anybody? Is that too much to ask?

  11. Re:Move to the latest version? by Wycliffe · · Score: 3, Insightful

    No thanks. IPv6 addresses are a mouthful, typically 3x as long when printed. We should move to a version that makes them 1 byte longer.

    IPv6 was a poor decision. It's like someone who ran out of toilet paper once so they went and filled their entire basement full so they won't accidentally run out again. 192.168.23.17 compared to AB34:34ED:AB34:34ED:AB34:34ED:AB34:34ED
    As we're now pretty much stuck with ipv6, they would be better off locking out all the later bits until the transition is complete and make the ipv4 directly translatable. I.e. 192.168.25.25 becomes just FFFF:C0A8:1919 and all other ipv6 numbers are off limits until the transition is complete.
    FFFF:C0A8:1919 isn't much more difficult than 192.168.25.25 and would make the transition much simpler than giving everyone a ipv4 number and a completely different ipv6 address.
    Doing it this way, everyone could still access the websites via either their ipv4 or ipv6, it would only be the higher order ones that you would need to upgrade in order to access. Similar things have happened with phones and websites. When new area codes were introduced or new top level domains, a few people had problems accessing the new areas with older equipment if the older equipment was hardcoded somehow.

  12. Comments Summarised by thegarbz · · Score: 5, Funny

    - What are we running out again? I thought we ran out last month! They are crying wolf!
    - IP addresses are assigned by region we only just ran out.

    - NAT makes this a non issue. Just use NAT!
    - NAT is a broken concept that breaks end-to-end connectivity!

    - I won't move to IPv6 they are too hard to type.
    - Why are you typing IPv6?

    - I can't NAT on IPv6 so it breaks my firewall and its insecure.
    - NAT is not a firewall, you can firewall IPv6

    - Why don't we just steal some of HP's IP addresses? They have some spare.
    - Break the internet by splitting up routing tables even further.

    - But NAT has protected us for many years everything works on NAT.
    - Everything now needs to connect to a command server. No end-to-end connectivity and nasty workarounds in routers to make applications work.

    - But DHCP doesn't work for IPv6!
    - DHCP isn't needed, and if it is needed yes it does.

    - But we can NAT the NATTING NAT NAT!
    - Go fuck your NAT.

  13. A solution by azcoyote · · Score: 4, Funny

    If we just shut down all the porn sites on the Internet, I'm sure we'd get back a good 98% of those IP addresses...

    --
    Incipiamus, fratres, servire Domino Deo, quia hucusque vix vel parum in nullo profecimus.
  14. Re:Move to the latest version? by Dagger2 · · Score: 3, Informative

    Copy/paste them. Or use DNS, it's hardly a new technology.

    And if you really can't do either, then pick your addresses better. If you pick addresses like 2001:db8:42:a57e:a92f:2c3d:30c5:7562 rather than 2001:db8:42:1::2 and refuse to use DNS for them, then you can't complain about how hard they are to remember.

  15. Re:Easily solvable by quetwo · · Score: 3, Interesting

    The problem with this is that some of the original recipients of those really big blocks like GM and HP were given those addresses, not leased them. They, for all practical purposes, own that address space.

    I know the organization I work for is a part of the problem. Before ARIN existed, a group of three schools (I work for one of them) were granted a /8 as a part of our research status. We have no relation with ARIN, and there isn't even a way to really give back 100 of the /16's we don't use.

  16. Re:Again? by Dagger2 · · Score: 3, Informative

    No, not again.

    Last year, ARIN hit one /8 left (that's the second article you linked). Back in July of this year, ARIN had to make their first ever refusal for an allocation on the basis of not having the IP space for it (that's the first article). They still had some space remaining for small allocations. Now, as of yesterday, they have to refuse all allocations on that basis, because they ran out of space altogether. That's this article.

    Apparently, the idea that reaching 0% involves going through 10% and 1% first is hard to grasp...

  17. Re:Move to the latest version? by rahvin112 · · Score: 4, Funny

    How can you be so ignorant of how IPv6 works and still have the hubris to propose a modification that supposedly fixes it?

    Oh silly me, this is Slashdot.

  18. Re:Move to the latest version? by unixisc · · Score: 3, Insightful

    IPv6 was a poor decision. It's like someone who ran out of toilet paper once so they went and filled their entire basement full so they won't accidentally run out again. 192.168.23.17 compared to AB34:34ED:AB34:34ED:AB34:34ED:AB34:34ED As we're now pretty much stuck with ipv6, they would be better off locking out all the later bits until the transition is complete and make the ipv4 directly translatable. I.e. 192.168.25.25 becomes just FFFF:C0A8:1919 and all other ipv6 numbers are off limits until the transition is complete. FFFF:C0A8:1919 isn't much more difficult than 192.168.25.25 and would make the transition much simpler than giving everyone a ipv4 number and a completely different ipv6 address. Doing it this way, everyone could still access the websites via either their ipv4 or ipv6, it would only be the higher order ones that you would need to upgrade in order to access. Similar things have happened with phones and websites. When new area codes were introduced or new top level domains, a few people had problems accessing the new areas with older equipment if the older equipment was hardcoded somehow.

    The stuff you are describing was initially contemplated, which is why we had IPv4 compatible addresses (::192.168.2.5) and IPv4 mapped addresses (::ffff:192.168.2.5). Problem was that that wasn't a simple way to resolve the addresses due to NAT in IPv4 among other things, which is why you have different transition mechanisms. Some of them have been used, like 6rd, Dual-Stack lite, Teredo, et al.

    The toilet paper analogy is not quite correct. Rather, it's more like a case of discovering a new fuel that's a million times cheaper than gasoline, doesn't emit greenhouse gases, but which would require all engines worldwide to be changed. Since that would be an expensive process, the guys who design the replacement engines are working w/ the fuel engineers to ensure that the engines would never need to be redesigned again. In the case of IPv4, even making it 33 or 40 or 64 bits would have required an overhaul of all the world's networking gear, which is why the jump was made to 128 bits.