Say "Thank you" to Bill...
Jeroen Massar
jeroen at unfix.org
Tue Mar 27 12:18:39 CEST 2007
Max Tulyev wrote:
> Jeroen Massar wrote:
[..]
>> You could maybe educate them though.
>
> I can't educate world using my clients' production sites :(
> May be my home sites or so.
>
> So the problem now is enabling V6 for hosting will hurt the service. It
> is really VERY bad thing.
Then very simple: DON'T DO IT!
That is your choice as a network administrator. But what you can do is
be ready to just slap the AAAA into DNS. What you can also do is provide
for instance a www.ipv6.<domain>.<tld> to provide IPv6 connectivity.
Also when a customer asks for it, then explain them what possible issues
you think can occur and then enable it if they still want it.
That if it all gives you soo much problems. In all the years that I have
had AAAA + A's on various websites I didn't hear of issues. Except for
people running 'that ipv6 script' and then forgetting all about it.
That is not an operational issue.
>> PS: Macintoys come IPv6 enabled already for quite some time too, they
>> though have IPv6 disabled in Safari to avoid the above issue...
>> Don't blame "Bill", *THANK* "Bill" for M$ having enabled IPv6. If they
>> didn't then IPv6 would never ever be used anywhere, or do you really
>> think that those few Linux boxes are going to matter? :)
>
> I understand well Bill's and TheBigBrother's(tm) main idea: to make
> traffic flow through their servers at least part, at least for a while.
Which traffic will flow through their servers!?
Please read up on what Teredo actually is...
Also note that due to decisions in the IETF some properties of the
original shipworm protocol where take out which would have lowered some
of these concerns, but they would have raised some security issues and
security comes first.
> But - they really did a bad thing for V6: they made V6 enabled hosting
> unusable in production :(
No, stupid "administrators" dropping packets on the floor did this.
Also, clearly you received reports about these problems, thus you know
which sites are affected, contact them and resolve it.
> Compare it to Linux/Mac: Have V6 way - use it. V6 is not setuped - fall
> back to V4. No tunnels. No security holes (how many people even know
> they have unfiltered V6 connectivity?!). No "strange" traffic. So on.
See the other messages, Mac OS X comes *per default* with IPv6 enabled
for years already. Ubuntu also comes per default, just for the fun of
it: google(IPv6 Ubuntu), first hit: " How-To: Disable IPV6 to speed up
Internet.", see http://ubuntuforums.org/showthread.php?t=87798
Vista has only recently been released and has not even got a huge
take-up yet, still you are whining over it. XP does *not* enable IPv6
per default, you have to enable it manually.
Please, if you want to bash Microsoft with invalid arguments take it to
a different list. This is not an OS flame list; unless there is of
course a real operational problem, which this clearly is not as you do
not even get your facts right.
Greets,
Jeroen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 311 bytes
Desc: OpenPGP digital signature
Url : http://lists.cluenet.de/pipermail/ipv6-ops/attachments/20070327/68a01129/signature.bin
More information about the ipv6-ops
mailing list