[olug] Ipv6 help/pointers

Shawn L. Djernes shawn at djernes.org
Thu Jul 25 00:09:19 UTC 2013 

Much, much better!! :)

---
Shawn L. Djernes
SD Consulting
E-mail: sdjernes at gmail.com
Phone: +1 402 350-6973
FAX: +1 888 297-6310

On Jul 24, 2013, at 16:38, Justin Reiners <justin at hotlinesinc.com> wrote:

> Well I called CenturyLink back, They are taking my current /64 back and
> giving me a /48, which should allow for 65,000 subnets. woohoo! Then I can
> just use  DHCP autoconfiguration for IPs on my LAN, as I have no need to
> host services from within the LAN, and have no care if they change.
> 
> 
> On Wed, Jul 24, 2013 at 4:27 PM, Lou Duchez <lou at paprikash.com> wrote:
> 
>> I've been turning IPv6 over and over in my head the past couple weeks, and
>> perhaps this will help -- my compare/contrast between IPv4 and IPv6 (as
>> they might be implemented in a LAN / Router / WAN scenario):
>> 
>> ---
>> 
>> IPv4:
>> addresses are 32 bit
>> addresses are either private or public
>> individual computers have private IPs
>> router has a private IP and a public IP, so it can communicate both with
>> local computers and with the Internet
>> router performs Network Address Translation (NAT) to carry traffic from
>> individual computers to the public Internet
>> 
>> 
>> IPv6:
>> addresses are 128 bit
>> all addresses are public, even on devices behind the router
>> the first 64 bits are specified by the ISP, and identify both the ISP and
>> your Internet connection
>> the last 64 bits are specified for each device by the end user (probably
>> via the router)
>> 128-bit addresses can be thought of as containing both a public component
>> (the first 64 bits) and a private component (the last 64 bits)
>> your ISP won't be providing an IP address so much as a 64-bit network space
>> router will not perform NAT -- 128-bit addresses contain enough
>> information to be routable on both the private and public sides
>> router will still perform most of its usual functions -- gateway,
>> firewall, etc -- it just won't need NAT to perform them
>> 
>> ----
>> 
>> With those observations in mind (and a warning -- it could be that I'm
>> mistaken on some of them), it sounds like you'll want to set up your router
>> to not block any ports to some subnets, but to block ports to another
>> subnets.  That is the defining difference between the DMZs and LANs you
>> want to set up.
>> 
>> 
>> 
>> OK, still confused, so if I was issueed, for example
>>> 20f1:0428:1D02:0101::/64 and the last 4 host bits need to stay the same,
>>> how do you subnet into two?
>>> 
>>> can I do like 20f1:0428:1D02:0101:0001::/63
>>> and              20f1:0428:1D02:0101:FF01:/63
>>> ? For some reason IPv6 makes my brain hurt. I have also tried a few
>>> calculators, and get mixed results.
>>> 
>>> 
>>> On Wed, Jul 24, 2013 at 3:16 PM, Hurley, Rod <RHurley at tenaska.com> wrote:
>>> 
>>> http://www.youtube.com/watch?**feature=player_detailpage&v=**PiOvdgU5I6I<http://www.youtube.com/watch?feature=player_detailpage&v=PiOvdgU5I6I>
>>>> 
>>>> Check this IPV6 subnetting video out.  Simple, but explains what you can
>>>> change and what you should not mess with.
>>>> 
>>>> Rod
>>>> 
>>>> 
>>>> -----Original Message-----
>>>> From: olug-bounces at olug.org [mailto:olug-bounces at olug.org] On Behalf Of
>>>> Justin Reiners
>>>> Sent: Wednesday, July 24, 2013 3:06 PM
>>>> To: Omaha Linux User Group
>>>> Subject: [olug] Ipv6 help/pointers
>>>> 
>>>> I am implementing ipv6 here at work, we were given a /64 from
>>>> centurylink.
>>>> everywhere I read online they say not to subnet a /64 . I would like to
>>>> split it between DMZ and lan  networks. Anyone have any good references
>>>> for
>>>> ipv6 subnetting? Can a /64 be split into like a million /63s?
>>>> ______________________________**_________________
>>>> OLUG mailing list
>>>> OLUG at olug.org
>>>> https://lists.olug.org/**mailman/listinfo/olug<https://lists.olug.org/mailman/listinfo/olug>
>>>> ______________________________**_________________
>>>> OLUG mailing list
>>>> OLUG at olug.org
>>>> https://lists.olug.org/**mailman/listinfo/olug<https://lists.olug.org/mailman/listinfo/olug>
>> ______________________________**_________________
>> OLUG mailing list
>> OLUG at olug.org
>> https://lists.olug.org/**mailman/listinfo/olug<https://lists.olug.org/mailman/listinfo/olug>
> 
> 
> 
> -- 
> *Justin Reiners*
> Hotlines Technical Solutions Engineer.
> Phone: 800.807.2967
> www.PartsHotlines.com
> www.MrCycleParts.com
>    <http://www.facebook.com/pages/PartsHotlinescom/251605051521985><https://plus.google.com/102910487271834609118>
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://lists.olug.org/mailman/listinfo/olug

More information about the OLUG mailing list