Menu
▾
▴
Re: [IPCop-user] IPv6 supported?
|
From: Bob E. <ipc...@li...> - 2015-07-09 16:33:06
|
In article <559...@da...>, "Jungersen, Danjel - Jungersen Grafisk ApS" <da...@ju...> wrote >On 8 Jul 2015 at 14:23, Tapani Tarvainen wrote: >> Of course IPv6 is routed. It is not NATted, however. >So if I have a webserver and want to make it available to the public >using ipv6, I enter the machines actual ip in the dns? Yes. (Assuming an IPv6-capable DNS server, of course.) >And how do the dns know where to find "me"... Find you or find your machine? For the latter, see above :) >Do I get a subnet that is "mine"? You ask your ISP to delegate and route a block of addresses to you - just as you would do for IPv4. By default, my current ISP provides a routed /64 block of IPv6 with every Internet connection they sell - and they have been doing that for more than ten years! >On the firewall I just make a hole for the webserver instead of guiding >the outside ip/port => inside ip/port? You can still firewall, port restrict, port translate, etc. You can even NAT, although I find it hard to see why anyone would bother. [Note that, contrary to what seemed to be implied earlier in this thread, NAT does not provide "security" - it is firewalling that does that.] >Please guide me to a good place to read, if you are running out of patience... The Wikipedia article is not a bad place to start: https://en.wikipedia.org/wiki/IPv6 Or perhaps: http://www.zytrax.com/tech/protocols/ipv6.html >> IPCop should eventually support IPv6 with all bells and whistles, period. >> It may be debated how urgent that is, but it's ultimate need is >> really not debatable. And I think it's getting urgent pretty soon. >All good things come to those who wait :-) After all the hard effort from so many good people, I'm immensely sad to say this but I fear that, having kicked the IPv6 "can" so far down the development roadmap, IPCop is in danger of becoming an irrelevance. I realise that there are "consumer type" ISPs that propose to work around the shortage of "Legacy" IP addresses by adopting measures such as CGNAT, but I suspect that ISP customers who would be prepared put up with those kind of bodges are unlikely to be natural IPCop users. And that's before we start talking about the IoT... -- Bob Evans |
