←back to thread

The IPv6 Transition

(www.potaroo.net)
215 points todsacerdoti | 4 comments | 20 Oct 24 05:54 UTC | HN request time: 0.019s | source
Show context
hairyplanter ◴[20 Oct 24 07:13 UTC] No.41893537[source]
I have fully implemented IPv6 in my home network.

I have even implemented an IPv6-Only network. It fully works, including accessing IPv4 only websites like github.com via DNS64 and NAT64 at my router.

The only practically useful thing about my IPv6 enabled network is that I can run globally routable services on my lan, without NAT port mapping. Of course, only if the client is also IPv6.

Other than this one use case, IPv6 does nothing for me.

It doesn't work from most hotels, nor from my work lan, nor many other places because most "managed" networks are IPv4 only. It works better at Cafes because they are "unmanaged" and IPv6 is enabled by the most common ISPs, like ATT and Comcast and their provided routers.

Based on this experience, I think IPv6 is less valuable than us HN audience thinks it is. Private networks, NAT, Carrier Grade NAT are good enough, and internet really doesn't care about being completely peer-to-peer.

I think the adoption rate reflects this--it's a linear growth curve over the last 25 years. It should have been exponential.

I think cost of IPv4 reflects this--it is now below the peak, and has leveled off.

As surprising as it seems, IPv4 exhaustion has not been a serious problem. Internet marches on. IPv6 is still a solution looking for a problem, and IPv4 exhaustion wasn't one of them.

replies(21): >>41893541 #>>41893647 #>>41893711 #>>41896275 #>>41898003 #>>41898138 #>>41898700 #>>41898907 #>>41898988 #>>41899569 #>>41900489 #>>41900918 #>>41901253 #>>41901285 #>>41902429 #>>41902453 #>>41902668 #>>41903211 #>>41903638 #>>41903908 #>>41913238 #
Dylan16807 ◴[20 Oct 24 07:15 UTC] No.41893541[source]
NAT is mostly okay, but carrier grade NAT where you can't forward a port causes real problems.

IPv4 exhaustion is a real problem, it's just not enough to motivate people much.

replies(5): >>41893570 #>>41893584 #>>41899608 #>>41900893 #>>41902480 #
kijin ◴[20 Oct 24 07:21 UTC] No.41893584[source]
If it was a real problem, market pricing would reflect the increasing severity of that problem.

The truth is that people who care about port forwarding are such a small minority -- especially now that P2P file sharing has lost its hype -- that they don't make a visible dent in the rate of IPv4 exhaustion.

replies(6): >>41893614 #>>41893621 #>>41893682 #>>41900260 #>>41902262 #>>41909616 #
AStonesThrow ◴[20 Oct 24 07:44 UTC] No.41893682{3}[source]
The truth is that major cloud providers such as Amazon AWS have begun to charge [more] for static, routed IPv4 addresses.

Last I checked (a few years ago, I suppose), AWS APIs were incapable of using IPv6 internally, so a VPC still needed to dual-stack it in order to use AWS cloud features. That may have changed by now.

replies(2): >>41893774 #>>41898591 #
thayne ◴[20 Oct 24 21:23 UTC] No.41898591{4}[source]
Yep, lots of AWS apis don't work over ipv6, and many require making requests outside the VPC, so you need to have at least one ipv4 address for a NAT.
replies(1): >>41906107 #
cyberax ◴[21 Oct 24 17:05 UTC] No.41906107{5}[source]
You can use NAT64, it works with all the AWS services. Although it's pretty stupid that services like ECR don't have IPv6.
replies(1): >>41906812 #
1. thayne ◴[21 Oct 24 18:18 UTC] No.41906812{6}[source]
NAT64 requires you to have a NAT with a public ipv4 address. Or possibly pay to use someone elses NAT.
replies(1): >>41907123 #
2. cyberax ◴[21 Oct 24 18:47 UTC] No.41907123[source]
AWS supports NAT64 automatically if you have an Internet gateway attached, you just need to set it up in the VPC settings.
replies(1): >>41907924 #
3. thayne ◴[21 Oct 24 20:00 UTC] No.41907924[source]
https://docs.aws.amazon.com/vpc/latest/userguide/nat-gateway...

Says you need to have an AWS NAT for that to work. And AFAIK, setting up a NAT requires an ipv4 elastic ip.

And it makes since that AWS would want customers to have their own IP for NAT64, so that if one customer does something to get the ip address blocklisted it doesn't impact other customers.

replies(1): >>41910308 #
4. cyberax ◴[22 Oct 24 01:30 UTC] No.41910308{3}[source]
Yes, you're correct.

Though I don't think AWS cares too much about IP blocklist, you can always just get another elastic IP at any moment.