this post was submitted on 24 Jun 2024
675 points (98.0% liked)

Programmer Humor

31214 readers
98 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

founded 4 years ago
MODERATORS
[email protected]
[email protected]
675
Basically the extent of my IPv6 knowledge (lemmy.world)
submitted 1 week ago by [email protected] to c/[email protected]
93 comments fedilink hide all child comments
 

Template source: https://web.archive.org/web/20210304000634/https://www.government.nl/topics/coronavirus-covid-19/visiting-the-netherlands-from-abroad/checklist

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 117 points 1 week ago (51 children)

Actually, the Dutch government has mandated that all of its services need to be IPv6 compatible.

The longer you try to avoid IPv6, the harder you'll make your life when you eventually need to use it.

It's really not that hard, especially compared to the kludge of protocols that make up IPv4. I know change is scary and difficult, but if you can do IPv4, you can do IPv6.

[–] [email protected] 10 points 1 week ago (31 children)

It also means you no longer need the kludge that is NAT. Full E2E connectivity is really nice -- though I've found some network admins dislike this idea because they're so used to thinking about it differently or (mistakenly) think it adds to their security.

[–] [email protected] 15 points 1 week ago (11 children)

NAT still has its place in obfuscating the internal network. Also, it's easier to think about firewall/routing when you segregate a network behind a router on its own subnet, IMO.

[–] [email protected] 6 points 1 week ago

That's what temporary privacy addresses are for. Clients can just keep generating new addresses in your /64, which is it's own subnet.

load more comments (10 replies)
load more comments (29 replies)
load more comments (48 replies)