more on aka ipv6 Off-the-shelf home remote monitoring system (was Re: Man in Germany Foils Burglary in Brazil)

[David Farber <dave () farber net>]

Begin forwarded message:

From: Andrew C Burnette <acb () acb net>
Date: December 15, 2006 10:16:37 AM JST
To: dave () farber net
Subject: Re: Off-the-shelf home remote monitoring system (was Re:  
[IP] Man in Germany Foils Burglary in Brazil)

Dave,

The problem with enabling these "any to any" connections into the  
home are all related to the "stopgap" that is known as Network  
Address Translation (or NAT).  Home connections are assigned a single  
address, often having many devices connected behind a linksys/dlink/ 
netgear/etc router which simply performs a basic NAT function.

The result is fragile applications written to "get around" the  
limitations of NAT, and application gateway helpers built into those  
$49 boxes so many of us have in our homes. All of these bandaids  
undermine security (due to complexity of code in an application) and  
diminish functionality of the network as it is capable of if address  
space were made available for all devices needing one.

Thus, "end to end" communication does not exist on the Internet as we  
know it today. Why is this?  IP address conservation, and limited  
space in IPv4 addresses. We have legacy "auto manufacturers" with  
more assigned IP addresses than entire countries in Europe and Asia.  
The entirety of the cable or DSL offering of Internet service have  
fewer addresses than some countries.

IPv6 is the unfortunate answer, only because of the extended address  
space it provides. I call it unfortunate as all IPv6's other [good]  
features have been backported to IPv4, or are no longer issues (due  
to three orders of magnitude increase in CPU power and RAM in routers  
in a decade since IPv6 was solidified).

There is no clear economic benefit for the early adopter, and those  
companies (ISPs, Carriers, NSPs, etc) are in the weakest financial  
positions to invest in transitioning to a "bigger" Internet.

Food for thought in any case.

Thanks,
Andy Burnette
Telcordia Applied Research
http://www.argreenhouse.com


David Farber wrote:
> Begin forwarded message:
> From: Dave Crocker <dcrocker () bbiw net>
> Date: December 15, 2006 7:04:11 AM JST
> To: dave () farber net
> Cc: ip () v2 listbox com, Ross Stapleton-Gray <ross () stapleton-gray com>
> Subject: Off-the-shelf home remote monitoring system (was Re: [IP]  
> Man in Germany Foils Burglary in Brazil)
> David Farber wrote:
> > "Businessman Joao Pedro Wettlauser was in Cologne, Germany, on  
> > Sunday when he received an alert on his phone informing him that  
> > someone had entered his vacation house in Guaruja, 54 miles south  
> > of Sao Paulo, police said.
> > He quickly turned on his laptop and, thanks to security cameras  
> > connected to the Internet, was able to see a tattooed man stuffing  
> > goods into trash bags..."
> On the one hand, it is clear that all of the pieces of technology  
> and software for doing this are readily available.
> On the other hand, I find myself unclear what the necessary details  
> are, for arranging this sort of set up work in a normal home and  
> with normal cell phones, smartphones, laptops, and the like.
> As a small example, normal home Internet connections are not very  
> workable for the operation of servers, yet this report described  
> coming *from* the Internet and going *into* the home's resources.
> I therefore suspect it would be of community benefit to have some  
> folks suggest the pieces and how to arrange them.  This would be  
> for a home with typical DSL or Cable Internet attachment, typical  
> Windows or Macintosh machines, and a user who has good installation  
> and administration skills, but not at the level of programming, or  
> otherwise requiring deep expertise.
> Or there might already be some citations to such recommendations.
> d/
> --
>   Dave Crocker
>   Brandenburg InternetWorking
>   bbiw.net
> -------------------------------------
> You are subscribed as acb () acb net
> To manage your subscription, go to
>  http://v2.listbox.com/member/?listname=ip
> Archives at: http://www.interesting-people.org/archives/interesting- 
> people/


-------------------------------------
You are subscribed as lists-ip () insecure org
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/