|
|
What exactly are the privacy extensions to autoconf - is it masking some of the bits obtained after autoconfiguration, so that the chances of figuring out other information like layer 2 addresses becomes more difficult?
It is simply a different way of acquiring IP addresses automatically, with guaranteed randomness if desired, and with the provision for regularly changing addresses.
Apple sells 13 millon iPhones in a quarter. They're ALL internet facing, no multi-tier architectures, and they ALL need IP addresses!
They don't get them. Asia has been doing 10/8 for mobile use practically from the beginning of mobile internet access there and Europe has done it for perhaps 10 years now. US is drowning in addresses, so you probably get a real IP address there, but that is not the case almost everywhere else.
However, 17 is Apple... They could handily buy HP these days.
Right but I can't even route to those addresses. What's the point of using public IP space if it's only internal?
Renumbering is a royal pain, and Ford probably uses 10/8 already. A
You can do address shortening in IPv4 too if you want... The rules are confusing, and much equipment gets them wrong.
Every machine on my IPv4 network (ok, not Oracle boxes) gets its IP via DHCP (ya know, that's kinda like IPv6 autoconfiguration...). Merging with another network would be no problem.
Ha! Obviously said by someone who has never tried it.
Can you HONESTLY say that if someone showed you a pile of IP V6 addresses and said "One of these has a problem in either the address or the subnet" you could just pick it out on the fly?
Yes, definitely. It is generally much easier with IPv6, because you are likely working with either
The additional space means room for giving sensible addresses to different parts of an organisation. Just hand them 16 subnets if they need 2, that way they won't come back and ask for more.
multicast will be f'n awesome
Don't expect multicast to happen. No one has demonstrated a way to make multicast scale to the Internet. It only works in controlled networks.
Can you assign multiple IPv4 addresses to your network card on your PC?
You can, and if they are in the same subnet it will even work. If they are NOT in the same network, it works until it doesn't. There are important cases where it works flawlessly, like if every other machine in the same subnet ALSO has an address in both subnets. Good luck enforcing them.
And yes, I'll likely get a hundred replies with "multiple addresses in different subnets work for fine me". Good for you. Don't touch anything, and if you do, don't complain when it breaks.
In IPv6 it actually works, as long as all routers are aware of it or all hosts with multiple addresses do policy routing to hit the right router. Those are workable conditions, you can build a good network like that.
once they've excavated what your MAC address is, telling your router to route traffic to your node is trivial.
If they can administer your router, it is trivial to discover your MAC address whether you use IPv4 or IPv6 and whether you pick static or automatic assignments. The MAC address is kept in the ARP table for IPv4 and in the neighbor table for IPv6.
Anyway, every modern OS supports privacy extensions to autoconf, so just enable that (they will likely be enabled already). It's a bitch to write firewall rules when the IP address changes daily though.
If you look good and dress well, you don't need a purpose in life. -- Robert Pante, fashion consultant