Happy 30th birthday to RFC 1631 ("NAT"), the "short term solution" we all rely on ( datatracker.ietf.org )

From the conclusion:

NAT may be a good short term solution to the address depletion and
scaling problems. This is because it requires very few changes and
can be installed incrementally. NAT has several negative
characteristics that make it inappropriate as a long term solution, and may make it inappropriate even as a short term solution. Only
implementation and experimentation will determine its
appropriateness.

frezik ,

A day old IPv6 thread where there isn't some moron arguing NAT is for security? What's going on here?

MehBlah ,

Thing is I knew it as masquerade for years before I heard the term nat.

frezik ,

Linux IPchains from the 2.2 kernel days?

MehBlah ,

Early version of slackware from around 95 or so.

NigelFrobisher ,

I wrote so many essays and exam answers in the late 90s on how IPv6 would come in and fix everything and I’m really feeling this.

flying_sheep ,
@flying_sheep@lemmy.ml avatar

It did, wherever it's used. If you can ditch backwards compatibility in your network and just use ipv6, everything gets so much simpler.

kratoz29 ,

Ah, how to forget the first obstacle in my hobby self hosting projects, the damn CGNAT....

"Just open the wireguard port bruh"

No my friend, I don't think that is gonna cut it.

(Thankfully Zerotier and Tailscale work for me).

doubletwist ,

I have the same issue (TRIPLE NAT'd! One of which is the CGNAT). Unfortunately I have external family that accesses from media boxes/TVs so those won't work for me.

Thankfully I was able to get a small VPS server for $2/mo and set up some reverse tunnels with auto-ssh. Seems to be working fairly well so far.

All that said, I longingly look forward to the future when I don't have to worry about NAT.

CedarMadness ,
@CedarMadness@midwest.social avatar

What's really crappy is that my ISP which used to give me a public ipv4 and also supported ipv6 2as bought out, and now I'm on cgnat and ipv6 support has disappeared.

Fuck metronet, it's not even cheap anymore

Hobbes_Dent ,

192.168.1.1/24. Got it.

- Everyone

qjkxbmwvz ,

I've only recently branched out from router defaults...only reason was that I wanted to VLAN off my home network, and mostly just so [Home Assistant-controlled] smart devices can't talk to the Internet at all.

qprimed , (edited )

10.0.0.0/8

172.16.0.0/12

192.168.0.0/16

🎶 a whole new wooorrrld... 🎶

neidu2 ,

Whenever I'm given the chance at work, I let my feelings be known about using "consumer grade addressing schema" in production clusters. Sure, I use it at home, but anything beginning with "192.168" looks like my moms wifi, and has no right being part of a production network.

This comment was sponsored by the 172.16.0.0/12 gang

doubletwist ,

I use 10.x.x.x addresses at home, though split into /24 networks in each vlan.

Rinox ,

That seems overkill

doubletwist ,

Well again, I'm only using /24 chunks of it.

The main reason I went with it is that it's far faster for me to type "10.0.x.x" than to type "192.168.x.x", especially on the keypad.

qprimed , (edited )

there is no fix more permanent than a temporary one.

edit: as I literally sit here inspecting the nat tables on a couple of edge routers.

cmnybo ,

That temporary fix will eventually become unnecessary. IPv6 has slowly getting more and more use.

state_electrician ,

Very, very slowly.

AtariDump ,

So has Linux on the “desktop” buts it’s never been the year of the Linux desktop.

FiskFisk33 ,

This thread starts with a document literally proving people have been saying that exact thing for 30 years now.

neidu2 , (edited )

Last week I was peer pressured into trying out Helldivers 2 (yes, this is relevant, trust me), so I downloaded it, installed it, and fired it up with no issues. Set up my preferred control schema with no issues. Played the torturial with no issues.

Then came time for joining my friends in multiplayer. Issues! No matter what I did, I couldn't seem to join them. Nor could they join me.

I verified the installed files, I tried to connect via my phone to rule out ISP issues, and I tried all of the different versions of proton, but the result remained the same. I simply couldn't join my friends.

I don't remember what caused me to go down the right path of troubleshooting, but I've always dosabled IPv6 on my linux installs. So I re-enabled it. The problem remained. Then I realized that I had it disabled in the kernel via grub command line flags, so I cuanged that and gave my PC a reboot. Success!

So, despite networking being a large (maybe even the largest) part of my vocation for the past two decades, last week was the first time ever I actually NEEDED IPv6.

hessenjunge ,

torturial - I like that. Sometimes a tutorial is indeed a torturial. 😊

stoly ,

My previous office was in a set of partitions put up in a library 20 years ago as a temporary measure.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • [email protected]
  • kbinchat
  • All magazines
    •