Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
 
     
   Compare ISP   Rate your ISP
   Glossary   Glossary
 
Please login or register.

Login with username, password and session length
Advanced search  

News:

Pages: 1 [2] 3

Author Topic: IPv6 - who has or does not have it and who does or does not understand it?  (Read 4448 times)

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #15 on: December 01, 2021, 08:08:35 AM »

I think there should be an "ISP best practices" RFC which lays down the law, very politely, about not being an insane ISP with IPv6. No dynamic IP prefix assignments for example, no excuses. And which once again sets out recommendations for the size of prefixes. I think /48 for home users is a bit mad (that’s you Andrews and Arnold). In the example of AA, there should be a default of a /64 or a /56. How many domestic users will ever start using multiple sites or developing some equivalent need. All small businesses get a /48, that seems reasonable to me. I have said this before.
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #16 on: December 01, 2021, 09:02:18 AM »

From what I read /48 is supposed to be the industry standard for how its done, because there's no reason NOT to use that many and it makes managing the system easier if everyone is doing it the same way regardless of business or residential.

Its something along the lines of the smaller the block, the more complicated the routing tables are and the harder it is to say "this IP belongs to this customer".  A /48 block is just easier to manage and gives plenty of scope for how you decide to subnet it.
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #17 on: December 01, 2021, 10:08:15 PM »

At least the Xbox works with IPv6 ;) me and that dude on tbb couldnt get it to work over IPV4.  For me for some reason the teredo tunnel was failing, I expect related to the fragmentation bugs in PF.

I just thought of a way to solve your IPv6 problem? maybe I suggested it before and its already been shot down.

But give the Xbox its own VLAN and only allow one ip on the DHCP6 allocation on that VLAN.  Would have to set the expiry very low as well to avoid a out of ip's situation.
« Last Edit: December 01, 2021, 10:12:19 PM by Chrysalis »
Logged

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #18 on: December 02, 2021, 01:53:51 AM »

@Alex RFC3177 was obsoleted by RFC6177 a long time ago. There were a large number of complaints about the wastefulness of giving out /48s routinely to home users.
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #19 on: December 02, 2021, 07:59:18 PM »

But give the Xbox its own VLAN and only allow one ip on the DHCP6 allocation on that VLAN.  Would have to set the expiry very low as well to avoid a out of ip's situation.

I had considered that, as a last resort.

@Alex RFC3177 was obsoleted by RFC6177 a long time ago. There were a large number of complaints about the wastefulness of giving out /48s routinely to home users.

How are they "wasted" if its impossible for us ever to use them all?  Both Zen and AAISP seem to still follow it.

It also highlights another problem with IPv6, they still keep fiddling.  If they're going to keep changing their mind then documentation gets further confusing.
« Last Edit: December 02, 2021, 08:02:11 PM by Alex Atkin UK »
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #20 on: December 03, 2021, 02:23:23 AM »

It was thought on IPv4 launch it was impossible to use them all.  Don't make the same mistakes twice. ;).
Logged

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #21 on: December 03, 2021, 05:17:08 AM »

About wastefulness, it was reported speech and I should have put quotation marks around it.

I don’t agree at all about the impossible to run out thing. In practice we don’t have 2128 subnets, we only have either 232  or 235 if my calculations are correct. Assuming that the prefix given to an ISP is either a /32 or a /29 (although eg BT has something a lot shorter, iirc, but they’re unusual), that means we might only have 2p-32 (in the worst case) users per ISP where p is the per-site allocated prefix length, so only 64k users each given a /48 by an ISP who has a /32 for themselves. Basically we’re burning through our 2128 in gulps of 264 or even worse 2128-(64+(64-48)) which is a mind boggling level of "wastefulness". It was a very good idea in my view having /64 as the size of the subnet portion of the address. We could have had 32 bits per subnet but the use of 64 bits means that we can derive IPv6 addresses from MAC48 or MAC64 addresses and that is a killer argument in my view. It’s impossible to scan even 232 addresses never mind 264 and that was a very important consideration. But given that in a single bound we’ve used up 64 out of 128 bits then we just have to be a little bit careful with the remaining 64 bits. If we ever were to get into trouble we could eat into the ‘right hand’ 64 bits and get a mind boggling number of new, smaller subnets but the process of doing that would be very messy, those networks wouldn’t enjoy the privileges that current subnets do, and we would probably have found that the idea that a subnet is 64 bits had become absolutely hard coded meaning lots and lots of bugs that could not be fixed!

Your point about not fiddling with IPv6 is a good one. But IPv6 has been released very early because the need for it is so very desperate and time was needed to discover certain things based on operational experience, experience that had not been had yet, so it was inevitable that certain things would have come out wrong and would need to be changed. Changing them rather than ignoring problems is imho the right way.

My own view is that RFC 6177 is the right way to go and ISPs should give users a choice for prefix size and have a sane number categories of users such as home user, soho/power home user, small business, growing business, large business, and set sensible a default according to each category a customer falls into. Say /64 for home user, /56 for soho power home user, /56 for small business, /48 for growing business and /48 for large business. It might be worth allocating a second prefix, which is always a /48, when you allocate the initial one in the case of businesses. That way if the business starts to grow then they can either renumber and entirely move into the second prefix or can use the second prefix in addition to the first, although that would be messier for routing and possibly firewalling.
« Last Edit: December 03, 2021, 09:08:15 PM by Weaver »
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #22 on: December 03, 2021, 09:02:22 AM »

I mean I'm not against a smaller subnet in principle as obviously its WAY more than a home user needs.  Its the changing goalposts and confusion with all the documentation making assumptions that bothers me.

The big problem with IPv6 is the sheer number of options for how things can be done and how they make it so difficult to get your head around how to transition.

There should never be a situation where a client can have a mind of its own about what IP address it uses, that just seems a security nightmare.  The fact I may have to stick the Xbox in its own subnet just to make sure it only has an option of ONE IP address seems absolutely bat p00 crazy.  As the network administrator I should have complete control over what a client is being assigned, period.  I'd think you of all people would appreciate that as you're the most paranoid person on here about client isolation and monitoring.

The point is when I see traffic moving to/from a client that I'm not expecting, I want to investigate that.  If I can't immediately tell for certain which client it is, that's not good.
« Last Edit: December 03, 2021, 09:08:47 AM by Alex Atkin UK »
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

jelv

  • Helpful
  • Kitizen
  • *
  • Posts: 2054
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #23 on: December 03, 2021, 10:35:34 AM »

Is there a technical reason why the smallest allocations we see are /64? For the ordinary home user maybe with smart devices, even if every single LED in a light strip had it's own IP I can't see anyone using a fraction if the IPs available to them!
Logged
Broadband and Line rental: Zen Unlimited Fibre 2, Mobile: Vodaphone
Router: Fritz!Box 7530

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #25 on: December 03, 2021, 09:14:37 PM »

As the network administrator I should have complete control over what a client is being assigned, period.  I'd think you of all people would appreciate that as you're the most paranoid person on here about client isolation and monitoring.

Couldn’t agree more. Unfortunately this has never been true, because in IPv4 when a system has DHCPv4 in use, a host can still just allocate itself any address it wants, by static allocation, which could fail catastrophically, or alternatively by just checking to see if a desired IPv4 address is in use and then grabbing it if it’s free. More than unlikely of course.

[Moderator edited to insert [quote author=][/quote] tags, so as to attribute the quoted text to its author.]
« Last Edit: December 04, 2021, 12:52:22 AM by burakkucat »
Logged

Chrysalis

  • Content Team
  • Addicted Kitizen
  • *
  • Posts: 7382
  • VM Gig1 - AAISP L2TP
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #26 on: December 05, 2021, 09:30:53 AM »

Is there a technical reason why the smallest allocations we see are /64? For the ordinary home user maybe with smart devices, even if every single LED in a light strip had it's own IP I can't see anyone using a fraction if the IPs available to them!

As I understand it, its to keep routing tables sizes down.
Logged

DaveC

  • Reg Member
  • ***
  • Posts: 197
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #27 on: December 05, 2021, 06:27:08 PM »

I think there should be an "ISP best practices" RFC which lays down the law, very politely, about not being an insane ISP with IPv6. No dynamic IP prefix assignments for example, no excuses. And which once again sets out recommendations for the size of prefixes. I think /48 for home users is a bit mad (that’s you Andrews and Arnold). In the example of AA, there should be a default of a /64 or a /56. How many domestic users will ever start using multiple sites or developing some equivalent need. All small businesses get a /48, that seems reasonable to me. I have said this before.

This is RIPE's view on this:

https://www.ripe.net/publications/docs/ripe-690

It does say that a /56 for residential is OK, but puts forward lots of arguments against it.  It also states "There are enough IPv6 addresses to delegate end-users a /48" - and they should know!

They also strongly recommend persistent (static) prefixes, it's shameful that the big UK ISPs ignored that - presumably encouraged by their marketing deptartments to differentiate consumer and business services.
Logged

Weaver

  • Senior Kitizen
  • ******
  • Posts: 11459
  • Retd s/w dev; A&A; 4x7km ADSL2 lines; Firebrick
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #28 on: December 06, 2021, 11:33:02 PM »

RIPE certainly know what they’re about, it’s just that it is not yet clear to ignorant fools such as myself. Take my own /48 which is 2001:8b0:xxx::/48 and for example the LAN-facing IP address of my Firebrick FB2900 is 2001:8b0:xxx:0::1 where 2001:8b0:xxx:0::/64 is my whole main LAN.

I just looked it up in RIPE’s website and AA’s allocation is a 2001:8b0::/32 so that only leaves them 216 /48s which is not very many customers. If AA just go and get a second /32, it would be rather nice if they can get one adjacent to their existing one so that prefix aggregation is possible, thus helping to prevent routing table bloat madness.

So does RIPE hold so many adjacent prefixes above 2001:8b0::/32, just in case AA come back later asking for additional allocations, oh and preferably adjacent to our existing one? Say for example RIPE sits on the range up to 2001:8b7::/29, something like that?

It’s a general problem that comes up in resource allocators, so I suppose.
Logged

Alex Atkin UK

  • Addicted Kitizen
  • *****
  • Posts: 5261
    • Thinkbroadband Quality Monitors
Re: IPv6 - who has or does not have it and who does or does not understand it?
« Reply #29 on: December 07, 2021, 08:04:15 AM »

As I understand it, its to keep routing tables sizes down.

Glad you said it as I thought that is what I had remembered reading too but I couldn't find confirmation so avoided saying so.
Logged
Broadband: Zen Full Fibre 900 + Three 5G Routers: pfSense (Intel N100) + Huawei CPE Pro 2 H122-373 WiFi: Zyxel NWA210AX
Switches: Netgear MS510TXUP, Netgear MS510TXPP, Netgear GS110EMX My Broadband History & Ping Monitors
Pages: 1 [2] 3