Hacker News new | past | comments | ask | show | jobs | submit login

It took me 6 hours to configure a Ubiquiti Edge Router to properly request an IPv6 prefix because of how poor the IPv6 support is right now. And by default the firewall is completely permissive because the web UI doesn't have support for IPv6.

And the prefix I get is dynamic. It changes each time the router power cycles or has a brownout or if the upstream network restarts for whatever reason (which is something I saw happening with regularlity on a different ISP about 1am to 2am, presumably them performing maintenance). So that means my firewall rules have to be constantly monitored and changed if they're any more complicated then reject all incoming connections. Only way I can see that working right now is to write a daemon that can hook into the PD process for that.

Plus how do I get my servers that are supposed to be internet facing to update their IPv6 prefix every time it changes? Does that mean that I have to put in additional code in every server to update their IPv6 addresses every single time the prefix is changed?

Oh and I can request a /54 no problem for now. There's no guarantee for instance if ISP decides to restrict residential users to only a /64, and require a business account to request more subnets. How do I plan a set of internet accessible networks that have to be segregated from each other if I have no idea if tomorrow I'm going to lose those subnets?

The only solution of right now is to use ULA and NAT6. Which is just IPv4's problem all over again except worse.

So yeah it is 'easy' if all your need is just only /64 and are using the ISP's router to setup a single network that you don't care about. But it spirals very quickly into madness when you try to step just a little beyond a simple setup.




I can’t comment on UI Edge routers, but my UDM SE has perfect IPv6 support. Which, granted, is a recent thing (full support for SLAAC arrived about 6 months ago), but no complaints from me about the UniFi line.


Carriers dynamically handing out v6 allocations that change is a major major problem for v6 adoption.

They need to change to static assignments for users and be done with it.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: