IPv6 - real vs theoretical problems

Jack Bates jbates at brightok.net
Thu Jan 6 22:14:25 UTC 2011



On 1/6/2011 4:00 PM, Deepak Jain wrote:
> In your enterprise, behind your firewall, whatever, where you want
> autoconfig to work, and have some way of dealing with all of the dead
> space, more power to you. But operationally, is*anything*  gained
> today by giving every host a /64 to screw around in that isn't
> accomplished by a /120 or so?

Today, I still like SLAAC. All my servers support specifying tokens for 
the host portion of the prefix. Pre-config, many utilize traditional 
SLAAC and end up in a range which is stateful firewall protected by the 
routers until such time as I can renumber them into the appropriate range.

Anyways, ARIN just approved my new allocation and I have to go renumber 
all those servers. At least assigning the new IPv6 addresses only 
requires a quick router edit. Application changes will take longer, of 
course, since we don't automatically generate DNS and other nifties.

The helpdesk, home, and customer trial networks should hopefully 
renumber with easy per my last renumbering trial. Link addressing, 
loopback changes, BGP, etc in the routers will still be a PITA.


Jack




More information about the NANOG mailing list