This is undeniably true though as I am tasked as the security monitor for several tiny LANs, NOT letting every device have DMZ access has its advantages.

Maybe I'm just too greybeard to want to change. I love IPv6 for infrastructure and personal devices. For my home LAN and those I am responsible for, a tightly nailed down IPv4 environment is what I prefer.

I'll leave the massive address space and IoT readiness to you young and upcoming packet jockys, and in my retirement will marvel at the wonders you create.

For now, you'll get your DHCP and you'll like it if you want to stay in my house young man!

[–] argv_minus_one@beehaw.org 12 points 1 year ago* (last edited 1 year ago) (8 children)

NOT letting every device have DMZ access has its advantages.

That is not relevant. It is entirely possible to have a stateful firewall without NAT.

What's more, it is significantly simpler to selectively open transport protocols and ports without NAT, because all that's needed is a firewall rule to allow unsolicited traffic to the appropriate address-transport-port combination. No need for port mapping. No more applications getting confused as to what their own address and port are. No more “every transport protocol other than TCP must go on top of UDP or it'll never reach the recipient intact.”

NAT is not a security measure. It requires a security measure to be in place in order to work, but there's no reason you can't use the security measure by itself.

Maybe I’m just too greybeard to want to change.

I have long worried that I would feel that way some day. Today is not that day, though. If I got notice that IPv4 is going to be discontinued in a month and everything is going to be IPv6 from then on, my first thought would be “good riddance.”

There are plenty of new things I'm resistant to, like cryptocurrency, using AI to write code, and making everything a web app, but that's not because those things are different from what I'm used to; it's because they're worse than what I'm used to. IPv6 is not worse than IPv4.

[–] Moira_Mayhem@kbin.social 4 points 1 year ago (7 children)

I know for a fact I've aged past plasticity and IPv6 will never be 'natural' but then as far as IT guys go, literally no one I work with is younger than me lol!

I'm retiring soon and fine without spending more of my life expanding a knowledge set I may only use for a few more years, that said I am ABSOLUTELY into crypto and was an early miner before GPUs got edged out.

As far as AI writing code: It simply is the future. I am not exaggerating.

At some point humans will not write line by line code and being a coder will mean 'knowing how to best instruct AI to make code, then reviewing and verifying it', and at some point the code AI will write will be incomprehensible to human reading, just like how antennas are designed today.

We are in the infancy of it but I GUARANTEE you there is at lease 2 groups right now training AI on codebases alone.

Guaran-fucking-tee

And the stuff they will make will FLOOD the market with cheap, quick apps and basically turn hand coding into an artisan work or for specific use instances.

[–] takelgryph@pawb.social 10 points 1 year ago

honestly, i can't think of a better endorsement of ipv6 than "people who think cryptocurrency is cool hate it"

load more comments (6 replies)