> I've never seen a mobile phone AP offer IPv6 to clients, but if they do they have to use SLAAC-compatible IPv6 NAT in that situation. iPhone does that, and I’m pretty sure I’ve seen Android doing the same. The phone…
> Nothing is stopping an ISP from implementing it by taking one ip and assigning ports 1-10.000 to customer A, 10.001 - 20.000 to customer B, and so on. Similarly, nothing is stopping an ISP from adding long-lived…
> Even if you want to geek out and manage it yourself, a VPS is a very attractive option. And some VPS providers already started charging extra for hosting the server on Legacy IP.
While debugging some issues in some system Claude refused to write test case because it broke terms of use. Oh shit, all this fantastic technology is in hands of corporations and they get to decide what we’re allowed to…
The availability of GitHub is still at 0% - it can't be reached over IPv6.
> not fully compatible with OpenBSD one The OpenBSD NAT and scrub syntax, and af-to are available in FreeBSD 15.
Even with IPv6 you still might have stateful firewalls allowing only for outbound connection at both ends (e.g. a CPE a.k.a. “WiFi router”) and to establish communication you’d need to punch a hole in those firewalls.
> just like almost all transportation is done today via cars instead of horses. That sounds very Usanian. In the meantime transportation in around me is done on foot, bicycle, bus, tram, metro, train and cars. There are…
It should always be at 0, because GitHub is unreachable over IPv6, which in 2025 should be considered an incident.
I did traffic shaping per user for a few hundred users on 1GHz Pentium III on Linux. It can be done just fine.
> On what's now almost 10 year old hardware, we could drop 44Mpps of a volumetric DOS attack and still serve our nominal workload with no impact. Was filtering done with pf, ipfw or some custom firewall?
> How do you avoid this IPv6 of course. > or is it just not important Port knocking not a security feature anyway.
Making my web resources IPv6-only has solved the problem for me. I don’t consider this a solution for ever, but for now it’s apparently way too modern or complicated for the A-so-called-I companies.
So that’s the only hope to get MRU tab switching in Chrime - get hired at Google?
Is this another incarnation of Sofort? Fortunately nobody is forced to used the former nor the later, you can either pay with card or just make your own SEPA transfer from any bank in Europe.
> I've never seen a mobile phone AP offer IPv6 to clients, but if they do they have to use SLAAC-compatible IPv6 NAT in that situation. iPhone does that, and I’m pretty sure I’ve seen Android doing the same. The phone…
> Nothing is stopping an ISP from implementing it by taking one ip and assigning ports 1-10.000 to customer A, 10.001 - 20.000 to customer B, and so on. Similarly, nothing is stopping an ISP from adding long-lived…
> Even if you want to geek out and manage it yourself, a VPS is a very attractive option. And some VPS providers already started charging extra for hosting the server on Legacy IP.
While debugging some issues in some system Claude refused to write test case because it broke terms of use. Oh shit, all this fantastic technology is in hands of corporations and they get to decide what we’re allowed to…
The availability of GitHub is still at 0% - it can't be reached over IPv6.
> not fully compatible with OpenBSD one The OpenBSD NAT and scrub syntax, and af-to are available in FreeBSD 15.
Even with IPv6 you still might have stateful firewalls allowing only for outbound connection at both ends (e.g. a CPE a.k.a. “WiFi router”) and to establish communication you’d need to punch a hole in those firewalls.
> just like almost all transportation is done today via cars instead of horses. That sounds very Usanian. In the meantime transportation in around me is done on foot, bicycle, bus, tram, metro, train and cars. There are…
It should always be at 0, because GitHub is unreachable over IPv6, which in 2025 should be considered an incident.
I did traffic shaping per user for a few hundred users on 1GHz Pentium III on Linux. It can be done just fine.
> On what's now almost 10 year old hardware, we could drop 44Mpps of a volumetric DOS attack and still serve our nominal workload with no impact. Was filtering done with pf, ipfw or some custom firewall?
> How do you avoid this IPv6 of course. > or is it just not important Port knocking not a security feature anyway.
Making my web resources IPv6-only has solved the problem for me. I don’t consider this a solution for ever, but for now it’s apparently way too modern or complicated for the A-so-called-I companies.
So that’s the only hope to get MRU tab switching in Chrime - get hired at Google?
Is this another incarnation of Sofort? Fortunately nobody is forced to used the former nor the later, you can either pay with card or just make your own SEPA transfer from any bank in Europe.