James Knott wrote:
Anders Johansson wrote:
You are aware, I hope, that many companies today run VPNs to their internal LANs even though every single machine has a real IPv4 address. The external connection is heavily locked down, and you only get in to your destination machine after seriously authenticating yourself. IPv6 will reduce the number of steps needed here by exactly zero!
There is nothing in IPv6 that prevents that. As I mentioned in another note, IPv6 has the equivalent of RFC1918 addresses. It just doesn't require NAT to use them. As has been mentioned, IPv6 easily supports multiple addresses on an interface. You could assign both public and local address to an interface and use the local address (there's another name for them that escapes me at the moment) for VPNs between sites and use the public address for outbound connections and specifically authorized inbound.
I just remember that other name. It's "unique local". http://en.wikipedia.org/wiki/Unique_local_address -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org