 TSI GabePremium,VIP
join:2007-01-03
Chatham, ON
kudos:2
1 edit | TekSavvy I can say that TekSavvy has started to do the same but most ISPs will run into a lot of issues as IPv6 is not fully supported yet across hardware/software. Simple things such as IPv6 over PPP can become a major PITA under certain conditions. At this point we actually have it figured out but we had to involve our vendors for help. And as an FYI, the service still isn't offered to our customers, but we're getting there.
Anyway just a heads up :P
--
TSI Gabe - TekSavvy Solutions Inc.
Authorized TSI employee ( »TekSavvy FAQ »Official support in the forum )
|
|
 rawgerzThe hell was that?Premium
join:2004-10-03
Grove City, PA | What good is this for the end user? Harder to do tracerts, remember your own IP, and probably uniquely identify you?
No thank you.
--
You can't make all the people happy all of the time. But it should be common sense to shoot for the majority. |
|
 nixenRockin' the BoxenPremium
join:2002-10-04
Alexandria, VA | said by rawgerz:What good is this for the end user? Harder to do tracerts, remember your own IP, and probably uniquely identify you? No thank you. It means there's enough address space that you'll be able to telnet to your toaster from your island vacation spot.
But seriously...
- Whether you're IPv4 or IPv6, you'll still have two end-points and intervening routers. So, you'll still be able to trace ...at least in as much as the routers will honor the trace packet requests (as, even quite a few IPv4 routers no longer do).
- Why are you trying to remember your own IP? The whole point of DNS is to obviate the need to know/remember IP addresses
- As to unique identification: if you're coming into my network from your Cable or DSL modem, I'm going to be able to uniquely identify you. Nothing really changes.
--
The trouble with the world is that the stupid are cocksure and the intelligent are full of doubt. -- Bertrand Russell |
|
| reply to rawgerz
It's hard enough to get end users to ping 192.168.1.1. Just think of the fun in getting them to ping 2001:0db8:85a3:08d3:1319:8a2e:0370:7348. |
|
 tubbynetreminds me of the danse russePremium,MVM
join:2008-01-16
Chandler, AZ | reply to nixen
said by nixen:It means there's enough address space that you'll be able to telnet to your toaster from your island vacation spot. however, with this newfound flexibility comes the responsibility of the end user to secure all internet facing devices. granted - nat isn't much security, but it does provide a first layer to keep the script kiddies out. i can just see the port-scans going on scanning hunndreds of blocks per second and looking for openings and exploits. for the majority of embedded devices, there is no real way to "patch" the system without going through a bit of trouble. i can see a lot of pwnage happening.
q.
--
"...if I in my north room dance naked, grotesquely before my mirror waving my shirt round my head and singing softly to myself..." |
|
1 edit | reply to battleop
said by battleop:It's hard enough to get end users to ping 192.168.1.1. Just think of the fun in getting them to ping 2001:0db8:85a3:08d3:1319:8a2e:0370:7348. lol according to wikipedia though the localhost is ::1 at least you get that! |
|
| I've yet to come up with a decent ipv4 to ipv6 translation for the novice. Maybe someone has something I can point people to so they better understand ipv6. I am not very good at dumbing things down for people. |
|
nixenRockin' the BoxenPremium
join:2002-10-04
Alexandria, VA | reply to tubbynet
said by tubbynet:said by nixen:It means there's enough address space that you'll be able to telnet to your toaster from your island vacation spot. however, with this newfound flexibility comes the responsibility of the end user to secure all internet facing devices. granted - nat isn't much security, but it does provide a first layer to keep the script kiddies out. i can just see the port-scans going on scanning hunndreds of blocks per second and looking for openings and exploits. for the majority of embedded devices, there is no real way to "patch" the system without going through a bit of trouble. i can see a lot of pwnage happening. q. Would suck to have your toaster hacked. And given the auto ad hoc networking that the one WiFi consortium is working on, it wont be long before our ultra-connected appliances rise up and kill us!
--
The trouble with the world is that the stupid are cocksure and the intelligent are full of doubt. -- Bertrand Russell |
|
| SKYNet....
Camm withh Meeee ef youu went tooo lieave... |
|
1 edit | reply to TSI Gabe
said by TSI Gabe:I can say that TekSavvy has started to do the same but most ISPs will run into a lot of issues as IPv6 is not fully supported yet across hardware/software. Simple things such as IPv6 over PPP can become a major PITA under certain conditions. At this point we actually have it figured out but we had to involve our vendors for help. And as an FYI, the service still isn't offered to our customers, but we're getting there. Anyway just a heads up :P All modern OS' including XP through IPv4-to-6 tunneling while Vista, 7, OSX, and Linux Distro's have native IPv6 support (As far as I know). The only problem here is the lack of support among hardware manufacturers who could easily distribute IPv6 support to their devices. Even DD-WRT devices with mini and micro installed (which many consumer level devices can only support) only support IPv4. That is where the majority of the problem lies.
Edit: Speaking of which, if you get the opportunity, I suggest watching a video called "The Day The Routers Died" |
|
| reply to rawgerz
said by rawgerz:What good is this for the end user? Harder to do tracerts, remember your own IP, and probably uniquely identify you? No thank you. Whatever happened to DNS?
But in all honesty, there also is the 6-to-4 option. |
|
| reply to battleop
said by battleop:It's hard enough to get end users to ping 192.168.1.1. Just think of the fun in getting them to ping 2001:0db8:85a3:08d3:1319:8a2e:0370:7348. That's why you ping ::1. |
|
 ground
join:2008-01-16
Toronto, ON | reply to PapaMidnight
I am not excited about this at all. Routers offer very good security and control point. How are we going to control local networks then?
This IPv6 sounds like anarchy to me - everybody will have their own public IP and do whatever they want. |
|
brad
join:2007-09-06
Etobicoke, ON | said by ground:I am not excited about this at all. Routers offer very good security and control point. How are we going to control local networks then? This IPv6 sounds like anarchy to me - everybody will have their own public IP and do whatever they want. How do you control local networks now? OMG. Teh Internetz will actually work again as was originally designed. |
|
|
|
brad
join:2007-09-06
Etobicoke, ON | reply to tubbynet
said by tubbynet:however, with this newfound flexibility comes the responsibility of the end user to secure all internet facing devices. granted - nat isn't much security, but it does provide a first layer to keep the script kiddies out. i can just see the port-scans going on scanning hunndreds of blocks per second and looking for openings and exploits. for the majority of embedded devices, there is no real way to "patch" the system without going through a bit of trouble. i can see a lot of pwnage happening. q. So that will require what sort of changes over existing routers? *thinks* *thinks* oh wait. nothing. OMG! The sky is falling, the sky is falling! |
|
 TomS_Git-r-donePremium,MVM
join:2002-07-19
Ireland
kudos:1 | reply to battleop
said by battleop:It's hard enough to get end users to ping 192.168.1.1. Just think of the fun in getting them to ping 2001:0db8:85a3:08d3:1319:8a2e:0370:7348. Thats exaggerated.
They will only have to ping 2001:db8:85a3:8d3:1319:8a2e:370:7348. 
You dont have to pad it out with 0's. |
|
TomS_Git-r-donePremium,MVM
join:2002-07-19
Ireland
kudos:1 | reply to ground
said by ground:everybody will have their own public IP and do whatever they want. What stops them doing whatever they want now?
Its easy enough to get a block of public IPs from your ISP - as long as youre willing to pay for them.
The Internet on IPv6 will be little different to the Internet on IPv4. |
|
ground
join:2008-01-16
Toronto, ON Reviews:
 ·Rogers Hi-Speed
| said by TomS_:What stops them doing whatever they want now? What do you mean what stops them? My router does - I have half of Internet blocked here. They can't even get online without being properly authenticated on the router.
Now with IPv6 they will come with their laptops, get public IPs, download Gigs of pron/send spam/DDoS other sites. How you're going to control them without a router? NAT allows you to put them in a sandbox and set your own rules. |
|
TomS_Git-r-donePremium,MVM
join:2002-07-19
Ireland
kudos:1 | said by ground:said by TomS_:What stops them doing whatever they want now? What do you mean what stops them? My router does - I have half of Internet blocked here. They can't even get online without being properly authenticated on the router. Now with IPv6 they will come with their laptops, get public IPs, download Gigs of pron/send spam/DDoS other sites. How you're going to control them without a router? NAT allows you to put them in a sandbox and set your own rules. Having a public IP does not mean you are exempt from firewalls, ACLs, access restrictions etc.
There is also nothing to stop you from NATing your public IPs out onto the Internet either. Its a bit silly, but it will work.
Regardless, however you are stopping people from doing stuff right now you can use the same methods to stop people from doing stuff on a public IPv6 address. |
|
| reply to ground
said by ground:said by TomS_:What stops them doing whatever they want now? What do you mean what stops them? My router does - I have half of Internet blocked here. They can't even get online without being properly authenticated on the router. Now with IPv6 they will come with their laptops, get public IPs, download Gigs of pron/send spam/DDoS other sites. How you're going to control them without a router? NAT allows you to put them in a sandbox and set your own rules. You do seems not understand the function of a router or topology, classing, etc...
IPv6 isn't going to turn every public IP into a dedicated link to the internet. It is allowing more addresses. You can still stop people getting out of your network if you choose |
|
