The way most of our governments are set up, the people in power typically arrive on the backs of the people with money. Elon Musk has a great deal of wealth, so everyone in power is going to listen to him.
While these articles are useful in understanding the utility of IPv6, what would really help is an article explaining step by step how to configure a home network using IPv6. The tutorial should answer these questions:
- How to ensure there are no collisions in address space? Translates to, how to pick safe addresses, is there a system?
- How do I route from an external network resource to an internal network resource? Translates to, can you provide syntax on how to connect to an smb share? Set up a web service that works without WireGuard or equivalent?
- How does one segment networks, configure a vlan, set up a firewall?
- Devices using SLAAC (idk about DHCPv6) do a thing called Duplicate Address Detection to manage just this. No need to worry. If you’re manually assigning addresses and have a conflict, one of the devices will mark its address(es) as duplicate and refuse to use them. Quite useful.
- Easiest is to use your devices’ public (“global unicast”) addresses and allow traffic on your firewall. This is how IP was meant to be used; no NAPT in sight. If you like, you can use ULAs locally and then do NPTv6 for internet-facing access. But I’d recommend against that to start.
Regarding the services, there’s not really anything IPv6 specific. Whether v4 or v6, you shouldn’t be exposing SMB to the internet. Whether v4 or v6, you can put any IP-based service behind Wireguard or any other tunneling solution. There’s nothing specific to v6 there; just use v6 addresses in your config, and you’ll be good to go.
- Basically the same way as with v4; IP (whether v4 or v6) have mostly the same semantics in their layer (layer 3). The only thing is that you’ll want to allow certain kinds of ICMPv6 traffic, assuming your firewall vendor doesn’t do that out of the box. When it comes to VLANs, that’s layer 2, so your layer 3 protocol doesn’t play any role there.
Network segmentation is way more fun with v6 because you have enough address space to make nice hierarchical topologies.
- if you're talking a private/local prefix, you can use tools like this to generate one: https://unique-local-ipv6.com/. Otherwise DHCPv6 and SLAAC will ensure no collisions for the most part.
- Use global/public addresses on all your devices (using something like prefix delegation) or use NAT.
- Same as IPv4. Prefix delegation will let your ISP assign you multiple networks, and then most routers will break these up into /64 networks for each of your VLANs.
> do you just scramble keys when picking an address?
No. Your ISP or tunnel broker gives you a network prefix. Then you configure SLAAC to use that prefix and hand out addresses within it. Job done.
For example, the prefix might look like 2001:470:e904::/48. Your computers can use any addresses you want as long as they start with that prefix. Since you don’t want to manually hand out addresses to every computer, you configure a router to hand out addresses via SLAAC. Your computers will use SLAAC to discover the prefix from the router, then fill in the bottom 64 bits of the address with a random number. They then ask the local network if anyone is using that full address. If not then they are done and have a working address. If somehow someone is using that address then they try again with a different random number. Servers that want a fixed address will just use their network card’s MAC address (or anything similar, if you want) instead of a random number. The protocol is the same either way.
Notice that this actually gives you some bits of your own to play with, if you want. The full address is 128 bits long. The first 48 were used by the prefix and the bottom 64 by the individual devices, leaving 16 bits in the middle. You could tell your router that the prefix for SLAAC is 2001:470:e904:42::/64, for example, and then use the other subnets for other purposes. Maybe 2001:470:e904:beef::/64 is a special subnet just for your meat freezer and associated monitoring equipment. I don't know, you get to make these things up for yourself. Maybe you manage a corporate network that has a separate VLAN for phones than for normal PCs, and a third VLAN for the guest WiFi. You can give them each a different prefix by embedding the VLAN id into the prefix you advertise via SLAAC.
There’s also DHCPv6 if you want even more control over which addresses are handed out, or you want to subdivide your network even more finely. Or if ISPs ever start handing out smaller prefixes.
> If your ISP gives you a static IPv6. Unfortunately in Germany none of the ISP for private users does (last I checked).
Sure, that’s true. But they probably don’t hand out static addresses for IPv4 either. Not without paying extra, that’s for sure. Either way if you want some static identifier for your computer(s) then the solution is the same: DNS.
Of course if you _are_ running a corporate network with a bunch of VLANS like that then you should actually get your own prefix from your RIR rather than from your ISP. Then you purchase IP transit services from your ISP rather than consumer internet access. You can then advertise your prefix(es) via BGP. Again, this is exactly what you would do for IPv4. Same software, same configuration, just longer addresses. The main advantage of this extra work is that you can keep your addresses static even if you move to an entirely different ISP. You can also use the same addresses over multiple connections to multiple ISPs for better redundancy.
This is a good overview. I think the difficulty with IPv6 is that people rely on all of the crutches invented for IPv4 as features: private addressing NATing gives you security (it doesn't) and portability (it does), IPv6 usually uses subnets per physical location making failover difficult, where as IPv4 will use bgp announcements to failover public IPs, etc. I'm not saying one way is better than the other, just that IPv6 is pretty different and people very much have a IPv4 world view.
> But come on! It is a legitimate question, do you just scramble keys when picking an address?
I did give the answer: SLAAC.
> If your ISP gives you a static IPv6. Unfortunately in Germany none of the ISP for private users does (last I checked).
Weird, here in the UK all the ones I've had have given me a static /56. Still, the same answer for that (DDNS) exist as for dynamic IPv4 addresses, you still get the advantage of not having to deal with NAT.
Agreed with the intent, but it's more narrow than that. Habeas corpus specifically means "there is a body." It's purpose is to set a high bar for homicide convictions i.e. a body must be present before a suspect can be convicted of murder/manslaughter by a court of law.
Habeas corpus is an order to bring a body before a court. The body being a live one, the detainee. Thus proving that the detainee hasn't been exiled/tortured/murdered/whatever and providing an opportunity to challenge the detention.
Wait, so these interns were screened, interviewed, added to the company payroll and health plan, given access to corporate infrastructure, and then let go in successive waves? As part of your hiring process?
I love sashayed. It's always accompanied with a mental image of a person clad in some silk, floor length robe who walks a slightly sidewards, the fabric whispering. I have no idea where that image came from, but it's always there.
You know, watching Mad Men, it seems to be that work culture hasn't changed since the 50s. The same fake smiles, the same small talk, the same boss's favorite getting the credit. What's really changed since then?
Let's not assume bygone days ever were what we think they were.
> I guess the word contemporary has been misused to the point of just meaning current or modern and I shouldn't nitpick it!
According to at least a few references, it very clearly applies to the two meanings. I couldn't find a single dictionary that excludes or seems to favor one over the other.
Ah, thanks -- I was just trying to capture the weirdness that happens when a work is set in the past, and then that work itself becomes old. For instance, if you watch Braveheart right now you're getting two views of the past: you're getting a (not-very-realistic) view of medieval England, and then in addition you're getting a view into how people in the 90s felt about history and social issues.
In the long run, this makes for very interesting rhetorical analysis of the work.
Your example of Braveheart, for instance, involves two views of the past through the lens of the _present_. So even in that context, both of those views are tinted by the experience and environment of the observer.
"contemporary fiction" is an industry/academic term for a genre of literature, but not widely used in the TV world. I think they meant "contemporary fiction" in the sense of the production of the fiction is contemporary. As in the TV show is contemporary in its creation, but the setting is historical. I don't think that redefines contemporary outside of... contemporary usage and definition.
It makes the most sense in context, and the discussion is about a TV show and not literature.
Different nitpick: Mad Men first aired in 2007. Is an 18 year old show that stopped production more than a decade ago contemporary?
I would consider it more of a necessary evil than a flaw. Both the writer and the audience need to be able to connect with the story, and you're just going to have a better connection if it feels more familiar to you.
> Contemporary work culture influenced its creators, so you’re likely seeing a reflection of that when you watch the show.
Many of the writers on the show have only ever worked in show businesses, which is its own mutation of work culture. Not many have actual worked in stereotypical corporate work situations.
Mike Judge (Office Space, Silicon Valley, etc) probably comes closest having started in corporate life and made a transition.
I’m sure you’re right, at least to some extent, but let’s not forget that Mad Men is fictional, and from the 21st century, and might not accurately reflect the 1950’s.
Fictional, but it captures something about work and life in that unique way that art is supposed to.
One of my favorite scenes:
Peggy: "You never say thank you!"
Don: "That's what the money is for!"
It captures a lot of the mismatch in perspective between employer/employee boss/subordinate. You're there to do something for someone who is paying you to do it. That's as far as it goes (despite the constant human pull to perceive it as more).
Or more recently Train Dreams. It's a real shame we had to spend time to bury those three men who were hit by a falling tree, but the company can't afford for us to take a day off. So back to work.
reply