Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Fri, Nov 29, 2019 at 02:08:39AM +0100, Ralph Seichter wrote

> The ndp dump on 'argon' shows expired entries, entries that are still
> valid for the listed time, and permanent entries. As you can see, I can
> use 'ferrum.local' to identify a particular machine and login. There is
> also 'silver', which happens to be my smartphone. There is even an entry
> 'fd67::::10' which represents a static IPv6 address I used for
> testing earlier, with fd67:: being my obfuscated ULA prefix.
> 
> IPv6 clients are chatting link-local without user intervention, to say
> "I'm here" and to ask "Who is near me?". Routers actively advertise
> their services. After a little while, clients start to get an idea of
> their surroundings without an admin holding their hand. IPv6 is pretty
> nifty in that regard.

  Looking at 
https://techhub.hpe.com/eginfolib/networking/docs/switches/K-KA-KB/16-01/5200-0133_ipv6_config_k/content/ch01s10.html

  Assume the following...
machine1 has a script in /etc/local.d/ that executes...
ipv6 address fe80::1 link-local

machine2 has a script in /etc/local.d/ that executes...
ipv6 address fe80::2 link-local

machine3 has a script in /etc/local.d/ that executes...
ipv6 address fe80::3 link-local

etc, etc.  Can I enter...

#
fe80::1machine1
fe80::2machine2
fe80::3machine3
#

...in /etc/hosts and will it properly match them to the correponding
machine?  Forget about global addresses for the time being.  I simply
want to be able to scp and ssh between local machines first.

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ralph Seichter 
* Walter Dnes:

> Look Ma, we have a form of IPV6 NAT (Ducks back into foxhole before
> incoming artillery barrage from IPV6 purists).

Hehe. ;-) That's both provocative and wrong. An IPv6 router can, at a
glance, decide if a packet needs to be handled locally or pushed out. No
need for mangling/rewriting as IPv4 NAT would require. It does not
matter if the packet arrives at the router via a link-local address,
because it contains the sender's global scope address and replies can
therefore be sent back with another single glance.

-Ralph

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ralph Seichter 
* Walter Dnes:

> I prefer man pages to rambling Youtube videos.

As you wish: man ndp  ;-)

> given that SLAAC and DHCPV6 assign random addresses how do I
> accomplish the equivalant of "scp  i660:."

The world according to 'argon', a MacBook Pro I am using right now:

argon $ ndp -a
NeighborLinklayer Address  Netif ExpireSt Flgs Prbs
fd67::::10  (incomplete) en0 expired   N
fd67:::0:86a:e0ce:2999:7c4 4c:57:ca:dc:8d:5e en0 23h59m20s S
fd67:::0:882:c472:d94f:66e3 20:c9:d0:45:ee:af en0 permanent R
fd67:::0:a96:d7ff:fe8b:69dd 8:96:d7:8b:69:dd en0 23h53m10s S  R
fd67:::0:553c:9719:22e0:af74 4c:57:ca:dc:8d:5e en0 23h52m30s S
fd67:::0:9d4c:8017:ae:c5af 20:c9:d0:45:ee:af en0 permanent R
argon.local (incomplete) lo0 permanent R
fe80::1%en0 (incomplete) en0 expired   N
fe80::a96:d7ff:fe8b:69dd%en08:96:d7:8b:69:dd en0 36s   R  R
silver.local4c:57:ca:dc:8d:5een0 23h59m10s S
argon.local 20:c9:d0:45:ee:afen0 permanent R
ferrum.local3c:7:54:7d:50:c1 en0 23h28m48s S
argon.local (incomplete)   utun0 permanent R
argon.local (incomplete)   utun1 permanent R
[... more addresses removed ...]

argon $ ssh ferrum.local
Last login: Fri Nov 29 01:06:17 2019 from 192.168.235.17
ferrum $ who
ralph  ttys000  Nov 29 01:45  (fe80::1444:5bd9:f47c:663c%en0)

The ndp dump on 'argon' shows expired entries, entries that are still
valid for the listed time, and permanent entries. As you can see, I can
use 'ferrum.local' to identify a particular machine and login. There is
also 'silver', which happens to be my smartphone. There is even an entry
'fd67::::10' which represents a static IPv6 address I used for
testing earlier, with fd67:: being my obfuscated ULA prefix.

IPv6 clients are chatting link-local without user intervention, to say
"I'm here" and to ask "Who is near me?". Routers actively advertise
their services. After a little while, clients start to get an idea of
their surroundings without an admin holding their hand. IPv6 is pretty
nifty in that regard.

-Ralph

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Fri, Nov 29, 2019 at 12:01:10AM +0100, Ralph Seichter wrote

> I think that, as long as the clients use link-local routing to connect
> to the router, and the router correctly passes IPv6 traffic in both
> directions, it should work without a global-scope address on the
> router's LAN-facing NIC.

  Lan machines with link-local IPV6 addresses to link-local IPV6 address
on the router, which talks to the world.

  Is that like lan machines with RFC1918 IPV4 addresses to RFC1918 IPV4
address on the router, which talks to the world???

  Look Ma, we have a form of IPV6 NAT (Ducks back into foxhole before
incoming artillery barrage from IPV6 purists).

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Thu, Nov 28, 2019 at 06:46:57PM +0100, Ralph Seichter wrote
> * Walter Dnes:
> 
> > How would this be accomplished under IPV6?
> 
> You may find https://youtu.be/A3LFt7CHpgs helpful. It is a video about
> Neighbor Discovery Protocol (NDP), provided by RIPE NCC.

  I prefer man pages to rambling Youtube videos.  I checked it out, but
it doesn't appear to answer my question.  My /etc/hosts contains...

192.168.1.249i3.waltdnes.org   i3
192.168.1.250  i660.waltdnes.org   i660
192.168.1.251  d531.waltdnes.org   d531
192.168.1.2   thimk.waltdnes.org  thimk
192.168.1.3  thimk3.waltdnes.org thimk3

  Neighborhood Discovery Protocol will discover all machines on my local
LAN.  Questions...

* which machine is which?
* given that SLAAC and DHCPV6 assign random addresses how do I
  accomplish the equivalant of "scp  i660:."  I.e. how do I
  *CONSISTENTLY* match hostnames to IP addresses.  And no, I don't want
  to have to "scp  [1234:2345:3456:4567:5678:etc]:."

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications

Re: [gentoo-user] Strange and potentially unsafe openssh feature

2019-11-28 Thread Mick 
On Thursday, 28 November 2019 22:15:52 GMT Ian Zimmerman wrote:
> For my ssh keys that require passphrases, I use ssh-agent to cache the
> decrypted key so I don't have to type the passphrase every time.  Until
> yesterday there was only one such key; last night I added a new one
> [1].  And, being the lazy thinker I am, I used the same passphrase as
> for the old one.

There is nothing inherently wrong with this, unless your single passphrase is 
compromised by a malicious entity.  Conceivably they will then be able to 
decrypt both of your private SSH keys.
 

> Now, I find that when I run ssh-add to tell ssh-agent about my keys,
> _both_ are added to the session after asking me the passphrase only
> once!  This can only be secure and correct if the agent somehow compares
> the passphrases and knows they are the same; even then, it is _very_
> surprising.  Have you seen this and how do you explain it?

I don't use ssh-agent to know its quirks, but from what I understand it will 
continue to use the last passphrase you keyed in the terminal when you run it.  
If your 2nd, 3rd, ..., nth private keys had different passphrases the ssh-
agent would prompt for a different passphrase to decrypt the next key and then 
use that passphrase thereafter.

> [1]
> It was necessary to create a new rsa type key because of a stupid server
> which doesn't understand ecdsa keys.

Which is fine.  Just set up in your client machine ~/.ssh/config with the 
appropriate (rsa) key to use on the 'stupid' server and when you try to 
connect to it your ssh client will not use other keys on this connection.
-- 
Regards,

Mick

signature.asc
Description: This is a digitally signed message part.

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ralph Seichter 
* Ian Zimmerman:

> The first reason [...] was that my router does _not_ assign fe80::1 to
> itself, but rather some other arbitrary address in the fe80 prefix

I found an article[1] that I first read years ago. "One method to make
things easier is to manually assign the link-local address to the
upstream router’s interfaces." That's one of the firmware-dependent
things, it may happen automatically. I know that my favourite data
center has its routers set up this way as well. One does not have to use
this method, of course.

[1] 
https://blogs.infoblox.com/ipv6-coe/fe80-1-is-a-perfectly-valid-ipv6-default-gateway-address/

> while the router seems to obtain a delegated prefix from upstream, it
> doesn't assign any address from that range to the internal
> interface. The only ipv6 addresses on the internal interface are the
> link-local address and the ULA address.

I think that, as long as the clients use link-local routing to connect
to the router, and the router correctly passes IPv6 traffic in both
directions, it should work without a global-scope address on the
router's LAN-facing NIC.

> I did enable the router advertisement feature, and I checked that the
> daemon is running on the router. But I can see no output related to
> that when I run tcpdump on the desktop system.

Anything that might be interfering with ICMPv6 ? That would prevent all
NDP, including router advertisement.

> so  you _do_ self-assign a static ipv6 address after all. How do
> you know it is the right one?

I only use a static IPv6 address for hosted machines, because I need DNS
 records. The individual subnets are statically assigned by the data
center to each machine.

At home, I don't configure clients with static IPv6, because it is not
necessary for me. In fact, I'm happy to have the lowest 64 address bits
scrambled (IPv6 Privacy Extensions) to make traffic analysis more
difficult. All local clients can use NDP to locate each other anyway.

> https://openwrt.org/docs/guide-user/network/ipv6/start

Sadly I have no practical experience with OpenWrt. Hopefully somebody
else here can help with that.

-Ralph

[gentoo-user] Strange and potentially unsafe openssh feature

2019-11-28 Thread Ian Zimmerman 
For my ssh keys that require passphrases, I use ssh-agent to cache the
decrypted key so I don't have to type the passphrase every time.  Until
yesterday there was only one such key; last night I added a new one
[1].  And, being the lazy thinker I am, I used the same passphrase as
for the old one.

Now, I find that when I run ssh-add to tell ssh-agent about my keys,
_both_ are added to the session after asking me the passphrase only
once!  This can only be secure and correct if the agent somehow compares
the passphrases and knows they are the same; even then, it is _very_
surprising.  Have you seen this and how do you explain it?

[1]
It was necessary to create a new rsa type key because of a stupid server
which doesn't understand ecdsa keys.

-- 
Please don't Cc: me privately on mailing lists and Usenet,
if you also post the followup to the list or newsgroup.
To reply privately _only_ on Usenet and on broken lists
which rewrite From, fetch the TXT record for no-use.mooo.com.

[gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ian Zimmerman 
On 2019-11-28 18:41, Ralph Seichter wrote:

> >  What am I missing?
> 
> I can't really tell, based on what you posted. Is there an IPv6 Router
> Advertisment service running, either on your router or another machine
> in your local network?

Thanks for answering; I got a bit further meanwhile.  The first reason my
initial tests (following your advice literally) didn't work was that my
router does _not_ assign fe80::1 to itself, but rather some other
arbitrary address in the fe80 prefix; on close inspection it looks based
on the MAC address just like a host is supposed to do.  When I ping6 or
traceroute6 that specific address, it works.

Secondly, while the router seems to obtain a delegated prefix from
upstream, it doesn't assign any address from that range to the internal
interface.  The only ipv6 addresses on the internal interface are the
link-local address and the ULA address.  Is that normal?

I did enable the router advertisement feature, and I checked that the
daemon is running on the router.  But I can see no output related to
that when I run tcpdump on the desktop system.

> Here is some data from the Gentoo machine I am currently working on. It
> is hosted in a data center and uses a /64 subnet. I obfuscated the IP
> addresses, but I'm sure you get the gist:
> 
> # cat /etc/conf.d/net
> dns_domain_lo="example.com"
> modules="iproute2"
> config_enp0s31f6="99.88.77.50/26
> 2a01:11:22:33::44/64"
> routes_enp0s31f6="default via 99.88.77.1
> default via fe80::1"

... so  you _do_ self-assign a static ipv6 address after all.  How do
you know it is the right one?

> In my home network, my FRITZ!Box router assigns both a ULA and a global
> scope address to each client, without any manual configuration on the
> clients. The optional ULA assignment means that, should my uplink
> connection die, the local clients can still talk to each other.

My router doesn't give me a global address.  Its documentation is at the
url below and I think I have followed it correctly.

https://openwrt.org/docs/guide-user/network/ipv6/start

-- 
Please don't Cc: me privately on mailing lists and Usenet,
if you also post the followup to the list or newsgroup.
To reply privately _only_ on Usenet and on broken lists
which rewrite From, fetch the TXT record for no-use.mooo.com.

[gentoo-user] Re: (SALT) Saltstack

2019-11-28 Thread Ian Zimmerman 
On 2019-11-28 13:20, james wrote:

> My specific (eventual) goal is to communicate/manage a wide variety of
> gentoo systems, from servers & workstations to a myriad of embedded
> and 5G minimal gentoo systems; particularly those on embedded
> processors that have modest resources.

I have no "wide variety" of systems - more like 5, and only one of them
runs gentoo.  I use git to keep track of configuration changes.  One git
repository for each of /etc, ~/.config, and /usr/local.  I wrote a
simple distributed command script to execute changes; the script
connects via ssh to each affected system (in parallel) and checks out
new git commits from a central repository.

There are prepackaged solutions for this kind of thing, look for
etckeeper and propellor.  But I found they either had annoying
misfeatures (etckeeper insists on tracking _all_ files under /etc) or
were overkill for my modest needs.

-- 
Please don't Cc: me privately on mailing lists and Usenet,
if you also post the followup to the list or newsgroup.
To reply privately _only_ on Usenet and on broken lists
which rewrite From, fetch the TXT record for no-use.mooo.com.

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Wols Lists 
On 27/11/19 18:55, Ralph Seichter wrote:
> * Daniel Frey:
> 
>> > I have exactly one choice for an ISP and I need a static IP. The ISP
>> > disables ipv6 for some reason when you have a static IP.

> Like I said, the availability of "decent" ISPs varies by location, and
> there are of course locations where one is basically screwed when it
> comes to IPv6, even in November 2019.

You're forgetting that this encompasses pretty much all of the United
States.

At least in the UK we do separate a lot of infrastructure from supply -
pretty much everyone has the ability to choose any ISP, which then
supplies service over BT/OpenReach's infrastructure, but of course this
is the most ancient infrastructure in the country and - in remote areas
where there is no competition - it still has trouble supplying 2MB ADSL.

Cheers,
wol

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Wols Lists 
On 27/11/19 09:28, Mick wrote:
> On Wednesday, 27 November 2019 01:51:44 GMT Dale wrote:
>> > Rich Freeman wrote:
>>> > > On Tue, Nov 26, 2019 at 8:10 PM Dale  wrote:
 > >> I went to Newegg.  Hey, I buy stuff there sometimes.  Anyway, I've
 > >> looked at several routers and none of them mention IPv6 that I can
 > >> find.  I even skimmed the reviews and can't find a mention of it.  Is
 > >> there some secret way to know when IPv6 is supported?  Is it called
 > >> something else maybe?

> It is called the OEM's website where technical specs are provided for each 
> model.

If you can find the website, and if you can find the technical pages
rather than the marketing pages.

The number of times I've downloaded what *claims* to be a manual, and it
turns out to be a quick-start guide. Finding information is  hard.

Cheers,
Wol

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Wols Lists 
On 26/11/19 23:56, Ralph Seichter wrote:
> * Adam Carter:
> 
>> when i enable v6, all my internal hosts become directly routable from
>> the Internet via the /56 my ISP assigns me.
> 
> Even pretty anemic hardware can handle the demands of an IPv6 firewall,
> for example using iptables/nftables. The demands of IPV6-related
> processing should actually be a bit lower than for IPv4, because IPv6
> does not need NAT.
> 
AND a router should be able to handle IPv6 easier than v4, because the
routing is hierarchical. v4 was meant to be like that, but fragmentation
has completely messed things up. v4 routing tables are now a complete mess.

v6 allocates a huge block to each of the registries, which is subdivided
among the ISPs, which is subdivided among the customers, which is then
shared out among the customer's network. So each router has a much
simpler task just shunting packets up or down based on whether the
computer's address belongs to the router's network or not.

Cheers,
Wol

[gentoo-user] (SALT) Saltstack

2019-11-28 Thread james 

Curiously,

Does anyone have any experience, tips  or comments on the use of saltstack

Gentoo specific location::

https://docs.saltstack.com/en/latest/topics/installation/gentoo.html#post-installation-tasks

My specific (eventual) goal is to communicate/manage a wide variety of 
gentoo systems, from servers & workstations to a myriad of embedded and 
5G minimal gentoo systems; particularly those on  embedded processors 
that have modest resources.


An eventual framework, where the devices can be graphically located and 
data overlayed  on different types of (data) graphical maps too.



It appears that some are using  OpenStack and Ceph with
Git, Ansible, Puppet, Chef, StackStorm for similar goals
of a total management system for all the microprocessors and sensors in 
their  theater of responsible.


some are rooting their cell phones, to have a hand held device to 
compliment laptops and multi-monitor systems.



TIA for any feedback, suggestions gotchas or any information.

James

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Dale 
Grant Edwards wrote:
> On 2019-11-28, Dale  wrote:
>
>> One more question Grant, if you know.  Do you know about the range of
>> the wireless on this router?  You ever tested to see how far say a cell
>> phone or something will hold a signal and work?  I had to move my
>> printer to the kitchen, a far bedroom was to far away.  It would get a
>> signal at times but not often enough.  It's about 60 feet away and
>> really only two thin interior walls between the router and printer.  My
>> cell phone does better for some reason.  I can go outside and be about
>> 100 feet away and it still update the weather info fairly quickly.  I'm
>> just curious if you have tested this and can share some experience with
>> how it works in the real world. 
> The range on the TP-Link seems better than average, but I haven't done
> any real testing.
>
> --
> Grant
>

Given the range of my current router is not real good, maybe it will be
better.  For my printer, it doesn't have to be to fast anyway. 
Generally my cell phone is within 10 feet if I'm updating so it should
do fine within that range.

Thanks for the info.  At least I can figure it will be better. 

Dale

:-)  :-) 

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ralph Seichter 
* Walter Dnes:

> How would this be accomplished under IPV6?

You may find https://youtu.be/A3LFt7CHpgs helpful. It is a video about
Neighbor Discovery Protocol (NDP), provided by RIPE NCC.

-Ralph

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Ralph Seichter 
* Ian Zimmerman:

>  What am I missing?

I can't really tell, based on what you posted. Is there an IPv6 Router
Advertisment service running, either on your router or another machine
in your local network?

Here is some data from the Gentoo machine I am currently working on. It
is hosted in a data center and uses a /64 subnet. I obfuscated the IP
addresses, but I'm sure you get the gist:

# cat /etc/conf.d/net
dns_domain_lo="example.com"
modules="iproute2"
config_enp0s31f6="99.88.77.50/26
2a01:11:22:33::44/64"
routes_enp0s31f6="default via 99.88.77.1
default via fe80::1"

# route -6n
Kernel IPv6 routing table
DestinationNext Hop Flag Met Ref Use If
::1/128::   Un   0   110 lo
2a01:11:22:33::44/128  ::   Un   0   100 enp0s31f6
2a01:11:22:33::/64 ::   U256 2 0 enp0s31f6
fe80::4e52:62ff:fe0a:9d75/128  ::   Un   0   3 0 enp0s31f6
fe80::/64  ::   U256 3 0 enp0s31f6
ff00::/8   ::   U256 2 0 enp0s31f6
::/0   fe80::1  UG   3   9 0 enp0s31f6

# ping6 fe80::1
PING fe80::1(fe80::1) 56 data bytes
64 bytes from fe80::1%enp0s31f6: icmp_seq=1 ttl=64 time=2.01 ms
64 bytes from fe80::1%enp0s31f6: icmp_seq=2 ttl=64 time=2.38 ms
64 bytes from fe80::1%enp0s31f6: icmp_seq=3 ttl=64 time=0.763 ms

In my home network, my FRITZ!Box router assigns both a ULA and a global
scope address to each client, without any manual configuration on the
clients. The optional ULA assignment means that, should my uplink
connection die, the local clients can still talk to each other.

-Ralph

[gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Grant Edwards 
On 2019-11-28, Dale  wrote:

> One more question Grant, if you know.  Do you know about the range of
> the wireless on this router?  You ever tested to see how far say a cell
> phone or something will hold a signal and work?  I had to move my
> printer to the kitchen, a far bedroom was to far away.  It would get a
> signal at times but not often enough.  It's about 60 feet away and
> really only two thin interior walls between the router and printer.  My
> cell phone does better for some reason.  I can go outside and be about
> 100 feet away and it still update the weather info fairly quickly.  I'm
> just curious if you have tested this and can share some experience with
> how it works in the real world. 

The range on the TP-Link seems better than average, but I haven't done
any real testing.

--
Grant

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Mick 
On Thursday, 28 November 2019 08:50:07 GMT Walter Dnes wrote:
> On Wed, Nov 27, 2019 at 09:28:59AM +, Mick wrote
> 
> > The world is moving towards high speed wireless connectivity anyway,
> > so more and more devices will not need a physical switch port or
> > ethernet cables to gain access to the network.
> 
>   "High speed wireless" is going to be a big disappointment.  Due to
> laws of physics, you need high frequencies for faster wireless speeds.
> But higher frequencies have a lot less penetrating power.  They might
> scream in a short range lab test, but in the real world, lower
> frequencies actually perform better.  See
> https://arstechnica.com/information-technology/2019/04/millimeter-wave-5g-wi
> ll-never-scale-beyond-dense-urban-areas-t-mobile-says/ for a demo.  This is
> about cellphone frequencies, but the same laws of physics apply.

Quite so.  This is why infrastructure providers are planning to use lamp 
posts, public buildings and the like.  In rural areas where no street lighting 
exists this becomes a problem.

However, many domestic WiFi routers come with dual WiFi SSIDs and separate 
VLANs to allow 3rd parties to use your WAP as a WiFi hot-spot, as long as they 
already have a user account with the same ISP, or are willing to register and 
pay exorbitant fees (at least in the UK) for a few hours usage.  

I can see a possibility for this hot-spot functionality extending to offer 
domestic 5G aerial repeaters, but in the country side with miles of 'no-spots' 
this is not going to offer much geographic cover anyway.

-- 
Regards,

Mick

signature.asc
Description: This is a digitally signed message part.

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Wed, Nov 27, 2019 at 09:28:59AM +, Mick wrote

> The world is moving towards high speed wireless connectivity anyway,
> so more and more devices will not need a physical switch port or
> ethernet cables to gain access to the network.

  "High speed wireless" is going to be a big disappointment.  Due to
laws of physics, you need high frequencies for faster wireless speeds.
But higher frequencies have a lot less penetrating power.  They might
scream in a short range lab test, but in the real world, lower
frequencies actually perform better.  See
https://arstechnica.com/information-technology/2019/04/millimeter-wave-5g-will-never-scale-beyond-dense-urban-areas-t-mobile-says/
for a demo.  This is about cellphone frequencies, but the same laws of
physics apply.

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Andrea Conti 


TIM has also been offering "experimental" native IPv6 to all 
PPPoE-connected customers for years [1]. It works, but they 
(intentionally?) made it less-than-useful by choosing to give out a 
dynamic /64.


andrea

[1] 
https://assistenzatecnica.tim.it/at/portals/assistenzatecnica.portal?_nfpb=true&_pageLabel=InternetBook=consumer_root=/AT_REPOSITORY/876181



On 28/11/19 03:46, Alessandro Barbieri wrote:
I can switch provider (currently with Vodafone) but in Italy only 
Fastweb has IPv6 (AFAIK) and it's not native but 6RD


Il Lun 25 Nov 2019, 15:54 Ralph Seichter > ha scritto:


https://www.ripe.net/ripe/mail/archives/ripe-list/2019-November/001712.html

This does not come as a surprise, of course, but I consider it a good
point in time to pause and ask oneself what each individual can do to
move further towards IPv6. The end is neigh(ish).

-Ralph

Re: [gentoo-user] Re: To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Thu, Nov 28, 2019 at 03:07:43AM +0100, Ralph Seichter wrote

> Personally, I don't think static IPv6 addresses are very useful,
> because machines in a local IPv6 network can easily locate each other
> using link-local addressing, without the need to configure this in
> any way. In the example above, the link-local address fe80::1 means
> "the default IPv6 gateway out of here".

  I've got 4 PCs of various ages at home, and a couple of laptops.  By
using static RFC1918 IPV4 addresses and /etc/hosts entries, I can refer
to the PCs by short easy-to-remember names.  My router/modem serves out
DHCP addresses starting at the bottom of a range, so even the laptop is
effectively on a static IP.  This allows me to easily ssh+scp between
machines.  How would this be accomplished under IPV6?

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications

Re: [gentoo-user] To all IPv6-slackers among the Gentoo community

2019-11-28 Thread Walter Dnes 
On Wed, Nov 27, 2019 at 07:55:51PM +0100, Ralph Seichter wrote

> Gentoo users are often technically skilled and therefore in a position
> to make good use of IPv6. I think it would be beneficial to let ISPs
> and router manufacturers know that IPv6 is not some exotic luxury.

  Gentoo users are not the "target audience" for most consumer ISPs.
If 1% avoid the ISP due to no IPV6, no problem.  Techy users tend to
run servers, and many consumer ISPs consider it a bonus that those
customers avoid them.  My ISP has IPV6 available on VDSL, but I'm not a
gamer and don't run servers, so there's no benefit to me for the extra
hassle on my part.  I'm in my late 60's.  I figure that IPV4 will
probably last longer than I will.

-- 
Walter Dnes 
I don't run "desktop environments"; I run useful applications