#ipv4
Command-and-control #IPv4 map, 2026-01-21 to 2026-02-03
https://abjuri5t.github.io/SarlackLab/
148.178.64[.]0/19
148.178.32[.]0/19
207.56.192[.]0/19
156.234.208[.]0/20
178.16.52[.]0/22
23.226.52[.]0/22
74.119.149[.]0/24
23.226.51[.]0/24
45.114.106[.]0/24
156.234.68[.]0/22
Ist jetzt nicht gerade das erwartete Ergebnis. Immerhin weiß man, woran man ist.
Just had a discussion on routable #IPv4 address space. This lead me to check #Bogon IP address space. I briefly fetched a public bogon list of a large provider, parsed the CIDR blocks and calculated the number of IPv4 addresses. Dividing this by 0.0.0.0/0 eventually lead to the discovery that 13.89% of the IPv4 address space is non-routable. Way more than I had anticipated.
Your daily dose of #netops knowledge... :)
@tschaefer @goetz @hallunke23 meinen sie da jetzt #IPv4 oder #IPv6 ?
😈
It's 2026 and idiotic company sunrise mobile still doesn't know how to do IPv6 on APN's.
Enjoy CGNAT!
#Switzerland #mobile #networks #sunrisemobile #sunrise #ipv6 #ipv4
Habe ich das in den Datenblättern von ka-glasfaser.de eigentlich richtig verstanden, dass man nur #IPv4 mit #CGNAT anbietet und gar kein #IPv6 / Dualstack?
https://www.stadtwerke-karlsruhe.de/de/presse/meldungen/2026/20251105-glasfaserausbau.php
#Stadtwerke #Karlsruhe #StadtwerkeKarlsruhe #KAGlasfaser #Telemaxx
@paulehoffman @b0rk @spamvictim @andy
3) Having limited #IPv4 address can be really painful in cases where you need structure. For example, firewall rules and route table entries often want to work with prefixes. Each entry consumes resources against a limit (max number of FW rules, FIB/RIB/TCAM space, etc). Limited address space means things end up fragmented even with planning. This means ACLs are often for individual IPv4 /32 addresses, or routes are for small /24 subnets (whose sizing is a trade-off between inefficient use of a valuable resource and having lots of fragmented tiny subnets). This also means that as things scale up and you hit a subnet or reserved-for-ACL prefix size, you need to add another one or get stuck. I spend a disproportionate amount of my time trying to navigate this hell in IPv4 land to balance resource usage and scale.
In #IPv6 many of these problems go away. You can just assign a large enough prefix to a site to have confidence that you won't need to add another for a few years if ever. And you can create prefixes for use in firewall rules and ACLs and then rarely-if-ever need to update them.
@paulehoffman @b0rk @spamvictim @andy
2) Limited Public #IPv4 address space forces most organizations into CGNAT. This has lots of challenges (shared IP reputation, scaling/reliability/perf issues, etc). Those NATs can be fairly costly to operate as well. This also makes troubleshooting hard (eg, if a compromised or broken client is behind a NAT, it can be hard to chase the problem down and it can have impact to all of the other users behind that IP).
(Viet Nam has actually been making some great progress with their #Ipv6 transition and unlike some countries just talking about it, they seem to be following through so far: https://blog.apnic.net/2025/08/27/modernizing-viet-nams-internet-infrastructure-security-action/ )
@paulehoffman @b0rk @spamvictim @andy
There are many angles here, so I'll provide one or two.
1) Having a large amount of IPv4 space made address planning and structured addresses easy. For example, MIT used to split up 18.0.0.0/8 in a structured manner -- for example buildings often got a /16. My undergrad dorm didn't *need* 64k IPv4 addresses, but being able to look at the second octet to know where it was turned out to be super convenient.
This is actually one of the huge benefits of IPv6, especially when people treat it as its own things rather than just as "bigger IPv4". If you get you address plan right then you can have structured addresses. As a large scale operator this turns out to be super convenient.
For example, if an organization has a /32 then they can slice this up in various ways. For example:
* Have a /48 per site, and then have common structure within each site.
* Have a /36 per function (prod servers, lab/QA, clients, etc) then have a /48 per site within that.
That sort of structure makes IPv6 addresses actually easier to work with than IPv4 -- it's not like anyone managing a network with hundreds of thousands of nodes is typing IP addresses by hand or memorizing them.
While structured addressing sometimes happens in RFC1918 space (eg, for K8s clusters in net-10), it is much easier to run out of space in IPv4 this way in ways that get you stuck, especially if you ever need to connect multiple environments together. While 16.7M+ addresses in 10.0.0.0/8 sounds like a lot, it turns out to be not big enough for structured addressing in large compute environments, or even for unstructured addressing for large ISPs with many tens of millions of subscribers.
@worstprgr @leyrer ich schwing' einfach #Banhammer, denn es ist für Angreifer teurer und langsamer neue IPs zu bekommen als für mich diese zu sperren!
@ietf draft draft-ietf-dnsop-3901bis-12 by Momoka Yamamoto & @tfiebig is update to #RFC3901, reflecting IPv6 deployment in DNS operations ( https://datatracker.ietf.org/doc/draft-ietf-dnsop-3901bis/ ).
#DNS reliability breaks when #IPv4 & #IPv6 support is inconsistent across authoritative servers, resolvers, and delegations. To avoid address-family failures, DNS must be dual-stack end to end: servers, zones, delegations, and glue records. IPv6 is a first-class transport, and resolvers must handle IPv4 & IPv6 paths robustly.
AWS IAM Identity Center: IPv6-Unterstützung für direkte Netzwerkverbindungen
Die Neuerung ermöglicht es Unternehmen, ihre Mitarbeiter ohne Netzwerkadressübersetzung direkt über das moderne Internetprotokoll mit AWS-Anwendungen und -Konten zu verbinden. Durch die Bereitstellung von Dual-Stack-Endpunkten bleibt die Migration flexibel und rückwärtskompatibel.
![Bad News IPv4 Fans!
Linus Torvalds has announced removing
IPv4 support from the Linux kernel after the maintainers
of the network stack got into a fight over what kind of HRT
gives the best results
On Wed, Aug 13, 2025 at ©3:00:29PM -0400, Alice wrote:
Hi Luna,
> HRT is best injected
that is clearly false. Also you're a gigahon for suggesting that
Can you get better at this shit? Also your patch sucks ass
Regards,
Alice
~ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads: [~2025-088-15 10:00 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
Do you really not see this?
A You two are stupid. I'm dropping IPv4 support from Linux.
You may need to learn to shut the f*ck up.
Linus
This incident will impact 5 billion people and
will make 95% of all network equipment
on earth binnable.](https://files.mastodon.social/cache/media_attachments/files/115/966/375/916/899/549/original/b0bbea9c3c5c4f90.png)
Frage an die Netzwerkexpert*innen unter euch: Ich versuche unter ubuntu einige ip routen einzurichten, um verbindungen zu bestimmten servern über eine VM zu routen, in der der vpn client läuft. Für #ipv4 klappt das schon wunderbar, aber #ipv6 macht mir noch Probleme. hostseitig trage ich in der networkmanager ui die routen ein, die ipv6 routen verschwinden aber ständig wieder. Vermutlich mach ich was falsch, weshalb die entfernt werden?
