>You can stop reading here if you like, but one of the things that prompted
>the question is this:
>
>I read an interview with itojun, and he said that he thinks people are
>wasting their time using NAT (he says IPv6 is a simpler solution). But if
>IPv6-only doesn't allow communication with IPv4-only and you have to run
>dual-stack hosts/routers, then IPv6 does not solve the problem that NAT
>was made to solve. You would have to run dual-stacks on all your machines
>necessitating more than one globally unique IPv4 address, as opposed to
>running NAT in which you only need one globally unique IPv4 address.
because you called me...
with gradual deployment of IPv6, you can transition like this:
- IPv4 worldwide with smaller IPv6 islands.
IPv6 islands can talk with each other using IPv6 directly
without any problem with NAT.
IPv6 islands can pick either of (or both of) the following to
access IPv4-only resources (like yahoo/ebay/whatever):
a. deploy IPv4 private address as well, and use normal IPv4-to-IPv4
NAT (if you already have one, you are done). nodes in the island
needs to be IPv4/v6 dual stacked. you have all the problem you
had with NAT when you contact IPv4-only destination.
b. have an IPv6-to-IPv4 translators so that IPv6-only nodes can
contact IPv4-only destinations. when you go through translators,
yes, you have all the problems with NAT - it is a tepmorary
workaround.
- number of IPv6 islands getting larger and larger, and use of
translators/NAT goes less common. you will have more incentive
to deploy IPv6 than to deploy IPv4.
- you have total IPv6 world without IPv4 NAT.
the current state of the world is the first bullet. there are
tremendous IPv6 deployment (most notably in Japan), for my day-to-day
work I'm in the second bullet (my house, my offices are all IPv6 ready,
connected natively. I'm doing "ssh cpuserver" or "fetchmail
mailserver" over IPv6, with almost no special care).
with IPv4 + NAT, you won't be able to graduate from NAT forever.
you won't be able to connect from outside NAT to inside forever.
you won't be able to deploy NAT-unfriendly protocols (protocol
designers are cursed by NAT).
my suggestion to users is always "don't worry too much, just try using
IPv6 and you'll like it".
itojun
---------------------------------------------------------------------
The IPv6 Users Mailing List
Unsubscribe by sending "unsubscribe users" to [EMAIL PROTECTED]
