On 4/28/23 09:01, Per Jessen wrote:
Lew Wolfgang wrote:
On 4/28/23 04:18, Carlos E. R. wrote:
If you are not going to use IPv6 internally, having source zone for 192.168.1.0/24 (or whatever your internal addresses are) and fallback zone for external traffic would be much more clean. I expect^H^H^H^H^H^Hhope to have proper IPv6 one day... What will IPv6 actually do for you? It's a serious question, what will it give you that you don't already have with IPv4 and NAT?
From my experience at work it's nothing but a PITA that reduces reliability. Really?? or are you just trolling?
No, serious question.
I certainly can't say that matches my experience, at all. I have been running ipv6 since around 2007, first with a tunnel, later with fixed ISP ranges and since 2015 with our own /28. We also still have a number of leased external machines, all with ipv6.
Reliability is fine, I don't understand how ipv6 could possibly reduce reliability of anything.
My experience is with a large dual-stack network that has several class B IPv4 networks. Router advertisements seem to be slow and unreliable, for one thing. Old protocols not supporting v6 are also an issue. Then there was the time when a user could mis-configure their Windows computer to turn it into a router that led to a dead end. Random network freezes were the result. What's to prevent a bad actor who managed to gain physical access from installing her own router and then siphon off traffic for their own ill deeds?
Some PIT ... minor issues:
* Wifi access points by Tp-Link have had trouble with ipv6. (okay, identifying that issue was a royal PITA) * dynamic ipv6 dns updates worked until we upgraded bind (they work again now) * recently, radvd threw a wobbly, still pondering that. * androids don't work with dhcpv6.
I have one issue I have only just this week picked up - we need to get the reverse zone dynamic updates to work too. There is some odd bind error when we enable updates.
Some days our public opensuse mirror has up to 33% ipv6 traffic. (from http://mirror.hostsuisse.com/stats/opensuse)
Switzerland - 19.4% of traffic, 169 unique clients France - 34.6% of traffic, 473 unique clients Germany - 18.7% of traffic, 3333 unique clients Portugal - 47.5% of traffic, 63 unique clients Netherlands - 18.4% of traffic, 152 unique clients Spain - 3.5% of traffic, 9 unique clients
However, the question in $SUBJ _is_ certainly valid, Andrei brought it up too. Well, for Joe Consumer in his armchair it brings nothing, and he or she will not even notice.
When I started playing with ipv6, I think I had the following reasons -
* ipv4 is boring, btdt.
We all reach a stage in life when boring is the end goal.
* need to have ipv6, to write/test code for it.
Recursive justification?
* want to know ipv6, it's a challenge and fun learning.
That's true. Too bad the learning doesn't lead to something useful.
* avoid problems when the ipv4 pool is exhausted.
But that's why God invented NAT! Regards, Lew