Subj : Cheap Hosting... To : Ogg From : Arelor Date : Mon Mar 22 2021 04:33:58 Re: Cheap Hosting... By: Ogg to poindexter FORTRAN on Sun Mar 21 2021 05:17 pm > Hello poindexter! > > Og>> Interesting. So there is not such thing as an IPv6 router > Og>> with a NAT? > > pF> I thought the whole idea was to go back to the internet-of- > pF> old, where everything is on the network? > > The way things are happening with IoT devices, I wouldn't want > someone poking around my "visible" network and mess with the > attached devices. Yes, this is why I call bullshit on people who is happy because we are finally going to have end-to-end connectivity from any device to any device with ipv6. Just not gonna happen. First thing everybody is going to do in his network is set a firewall up, NAT or no NAT. And once the firewall is up, devices will only be reachable and end-to-end connectable if the administrator deigns to open the ports for you. Exactly like we have right now, but with the disadvantages: * Now everybody knows your network topology. * Your firewall is not half as cool as it used to be, because you are supposed to let a lot of control traffic in an out just so your devices can be assigned addresses. * The ISP gets to decide how you manage your network topology. If you want to segment your network in a certain way, the ISP must provide you with your own block, or you have to resort to local addresses that are not Internet routable (and thus defeat ipv6's purpose). One big advantage, though: * You can have multiple devices in the same LAN offer the same port to the public. If you had two web servers behind a nat offering port 80, you could not just forward a port to each because the router can only offer a single port 80 to the public. You had to use some reverse proxy or relayer middleman. With NATless ipv6, you may skip the reverse proxy. You may still want to use it for other reasons, but you are not forced to. In my opinion, ipv6 is a net gain to ISPs and big data, because ones get to control your network, and the others get to see your network, but for end users... not worth it. -- gopher://gopher.richardfalken.com/1/richardfalken --- þ Synchronet þ Palantir BBS * palantirbbs.ddns.net * Pensacola, FL .