Educause Security Discussion mailing list archives
Re: IPv6 to the desktop
From: "Curtis, Bruce" <bruce.curtis () NDSU EDU>
Date: Mon, 25 Nov 2019 19:31:13 +0000
We have had native IPv6 enabled on our entire network, including wireless, since 2008. Between 30 and 40 % of our inbound traffic from the Internet is IPv6. For just our wireless network inbound IPv6 traffic from the Internet is nearly 50%. That is a lot of traffic that does not have to go through our NAT box. This graph shows that in the US about 60% of devices are connected to networks with IPv6 enabled. https://www.vyncke.org/ipv6status/project.php?metric=q&country=us The info from the graph above indicates that networks that have not yet enabled IPv6 will fall into the Late Majority category if they implement IPv6 soon. https://ondigitalmarketing.com/learn/odm/foundations/5-customer-segments-technology-adoption/ Facebook has moved to IPv6 only inside their data centers. https://www.internetsociety.org/resources/deploy360/2014/case-study-facebook-moving-to-an-ipv6-only-internal-network/ You asked about desktops and the link above is about inside data centers and the arguments for enabling IPv6-only in a data center do not directly apply to enabling dual stack in a campus network. However the decision by Facebook and other providers to implement IPv6 only data centers can indirectly affect desktop devices. Desktop devices that are dual stack can access Facebook services directly with native IPv6. Desktop devices with IPv4 only are likely NAted and to communicate with Facebook servers traffic likely will have to go through a NAT box on campus and then also through a translation box at the Facebook data center in order to access the IPv6 only servers. The two network translation steps can add additional latency and complexity to the communication with IPv6 only servers. Complexity can have a negative affect on reliability and availability. (Availability being the A in CIA security principles. The OMB is considering a mandate to require government agencies to fallow Facebookâe example and move toward IPv6 only on internal networks. This infographic has some interesting stats. https://hexabuild.io/assets/files/HexaBuild-IPv6-Infographic.pdf 1 in 2 websites in the US use IPv6. 7 in 10 mobile devices in the US use IPv6. 1 in 5 households in the US use IPv6. The report mentioned at the end of the Infographic mentions that Amazon paid $300,000,000 to GE for 16,000,000 IPv4 addresses. Expenses like that will continue for Amazon AWS and other providers and will be passed on to customers until more networks enable IPv6. On Nov 25, 2019, at 8:56 AM, Garmon, Joel <JSG () PITT EDU<mailto:JSG () PITT EDU>> wrote: Hi, Does anyone have IPv6 implemented on their internal network to the desktop? If you do, can you provide the benefits? Thank you, Joel Garmon Chief Information Security Officer Computing Services and Systems Development (CSSD) University of Pittsburgh 412-624-5595 ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community Bruce Curtis Network Engineer / Information Technology NORTH DAKOTA STATE UNIVERSITY phone: 701.231.8527 bruce.curtis () ndsu edu<mailto:bruce.curtis () ndsu edu> ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- IPv6 to the desktop Garmon, Joel (Nov 25)
- Re: IPv6 to the desktop Dan Oachs (Nov 25)
- Re: IPv6 to the desktop Clark Gaylord (Nov 25)
- Re: IPv6 to the desktop randy (Nov 25)
- Re: IPv6 to the desktop Curtis, Bruce (Nov 25)