LLMs aren’t virtual dumbasses who are constantly wrong, they are bullshit generators. They are sometimes right, sometimes wrong, but don’t really care either way and will say wrong things just as confidently as right things.
2 months ago I thought I’d start learning IPv6 and started watch some intro videos on YouTube.
Holy crap… It’s a beast and it just felt like if you don’t know what you’re doing you might lose all control over your network. Ok. So a device didn’t get a dhcp address? No problem… It creates it’s open IP address and starts talking and try to get out on internet on its own…
Normally that’s not a problem since your normal home router wouldn’t route 169.254.x.x… But it just seems like there’s A LOT to think about before activating IPv6 at home. I’ve got a Creality K1 Max… Fun thing: factory reset also creates a new MAC Address… So there’s no way in hell thay I just let her lose by activating IPv6.
Ps. Yes, I most likely panic because I haven’t figured out IPv6… But until I understand IPv6 there’s just going to be IPv4.
Generally, a device cannot get an internet facing IP address unless something else on your network is advertising the prefix. In fact, I'd argue there's little point using DHCPv6 now. Some devices are only interested in SLAAC. But, if you have a router that gets an IPv6 prefix from your ISP (usually /48 or /64, but you can get other sizes) it will usually then advertise that onto your local network.
As for the IP addresses. I would say that you should definitely still have a firewall in place. But the setup is the same as IPv4 just without NAT. e.g. you set a blanket rule for your prefix to allow outbound and block unrelated inbound. Then poke holes through for specific devices and services.
By default, IPv6 implementations make an assumption that they're not going to be a server (if you want a device to be a server, you can just set a static IP) and their "main" IP will be a random looking one (and the configuration will depend on whether it uses an interface identifier to create the address, or if it is random) within your (usually huge) allocation. But more than that, they will usually be configured to use the IPv6 privacy extensions (RFC4941). This generates extra temporary addresses per device, which are used for outbound connections and do not accept incoming connections. That is, people cannot see your IP address on their host from your connection and then port scan you, since no ports will respond. You could still have ports open on your "real" IP address. But, that one isn't ordinarily used for outgoing connections, so no-one will know it exists. To discover it they would need to scan your whole prefix (remember that the /64 allocation you will generally get is the internet * the internet in terms of address space, that is much harder to brute force scan).
I think the differences between IPv4 and IPv6 might seem scary, but most of them are actually improvements on what we had before, making use of the larger pools we have available. Once you work it out, it's really not so bad.
I would like to see routers setup to firewall ipv6 by default to give the same protection as NAT though, meaning users need to poke holes into the firewall for incoming connections. Maybe some do. I know mine did not and it was one of the first things I did.
Ok. So a device didn’t get a dhcp address? No problem… It creates it’s open IP address and starts talking and try to get out on internet on its own…
Its not that different from a conceptual point of view. Your router is still the gate keeper.
Home router to ISP will usually use DHCPv6 to get a prefix. Sizes vary by ISP but its usually like a /64. This is done with Prefix Delegation.
Client to Home Router will use either SLACC, DHCPv6, or both.
SLACC uses ICMPv6 where the client asks for the prefix (Router Solicitation) and the router advertises the prefix (Router Advertisement) and the client picks an address in it. There is some duplication protection for clients picking the same IP, but its nothing you have to configure. Conceptually its not that different from DHCP Request/Offer. The clients cannot just get to the internet on their own.
SLACC doesn’t support sending stuff like DNS servers. So DHCPv6 may still be used to get that information, but not an assigned IP.
Just DHCPv6 can also be used, but SLACC has the feature of being stateless. No leases or anything.
The only other nuance worth calling out is interfaces will pick a link local address so it can talk to the devices its directly connected to over layer 3 instead of just layer 2. This is no different than configuring 169.254.1.10/31 on one side and 169.254.1.11/31 on the other. These are not routed, its just for two connected devices to send packets to each other. This with Neighbor Discovery fills the role of ARP.
There is a whole bunch more to IPv6, but for a typical home network these analogies pretty much cover what you’d use.
Oh nice! I’ll have to dig into that. Wonder if its an implementation issue across vendors. I was always under the impression that DHCPv6 was the common convention if not static.
Those are just the same networking concepts as v4. Just 128 bits instead of 32. The hard thing can be ULA or SLAAC, which are like “yeah, just some random address to not get conflicts” and “yeah, first half your ISP gives you, second is taken from MAC address”.
We even get rid of a bunch loaded crap that holepunching v4 and making it work developed through years.
Maybe it seems hard, because what was used before was not really learned how it works but just relied on hacks.
Whenever we say some work is going to be difficult and time consuming now, management reflexively ask if we can fix it with AI. It’s like an excitable little kid getting a bicycle for their birthday and wanting to do everything on their bicycle now, including eating, sleeping and homework.
Must be an old screenshot because there’s now half a page of Gemini AI garbage at the very top now.
Highly recommend using the uBlacklist extensions to filter out the garbage, spam, copycat, useless sites that somehow seem to always beat out legitimate sources in SEO.
Asked it for the official documentation, got a link to the /current/ documentation's chapter on operators. Then asked for the heading about the IN operator and it gave me all four of the numbers. No need to wade through outdated or irrelevant results.
I had to learn emacs for my engineering computation class, up to the point that we were required to present our code in emacs if we had questions to ask during office hours.
I’m just an emacs … enjoyer (…?) and I just don’t understand the post. I’m pretty sure buffers here refer to something different from emacs buffers as they’re completely unrelated to clipboards. Then from a quick scan of the plug-in mentioned it seems to mimic the clipboard ring emacs has had for many decades (always?).
I can’t think of any FOSS games that would invite an idea guy to drive the project. They’re made of volunteers, sure, but FOSS game teams still expect tangible contributions. Otherwise it’s just another feature request and will get picked up if the team thinks it’s worth it.
More specifically with FOSS projects, whoever puts in the work makes the actual decisions.
Like, if there’s a change that one person wants and the others actively disagree with (and it can’t be made configurable either), then that won’t happen.
But usually, there’s hundreds of features that make sense in principle. And if someone scratches their own itch, i.e. implements the feature that they’re missing, then that obviously won’t be rejected, even if it’s not the most requested feature.
So, yeah, such an idea guy would need really good ideas and present them so well, that others selfishly want to implement those ideas (and moreso than all their other ideas).
“28496 - there, it’s fucking fixed you twat waffle.”
Ticketed bug bosses son found. Dude nagged his dad who nagged us until it got fixed. Boss doesn’t review code. And for the sake of a half dozen coworkers, I hope he never does.
It was a Saturday, but I was on-call when Networking shit the bed. One of the main trunk lines degraded and they took almost five minutes to switchover to backup 'cuz their automated degredation monitoring was on a five-minute interval. XD
programmer_humor
Top
This magazine is from a federated server and may be incomplete. Browse more on the original instance.