This is undeniably true though as I am tasked as the security monitor for several tiny LANs, NOT letting every device have DMZ access has its advantages.
Maybe I'm just too greybeard to want to change. I love IPv6 for infrastructure and personal devices. For my home LAN and those I am responsible for, a tightly nailed down IPv4 environment is what I prefer.
I'll leave the massive address space and IoT readiness to you young and upcoming packet jockys, and in my retirement will marvel at the wonders you create.
For now, you'll get your DHCP and you'll like it if you want to stay in my house young man!
NOT letting every device have DMZ access has its advantages.
That is not relevant. It is entirely possible to have a stateful firewall without NAT.
What's more, it is significantly simpler to selectively open transport protocols and ports without NAT, because all that's needed is a firewall rule to allow unsolicited traffic to the appropriate address-transport-port combination. No need for port mapping. No more applications getting confused as to what their own address and port are. No more “every transport protocol other than TCP must go on top of UDP or it'll never reach the recipient intact.”
NAT is not a security measure. It requires a security measure to be in place in order to work, but there's no reason you can't use the security measure by itself.
Maybe I’m just too greybeard to want to change.
I have long worried that I would feel that way some day. Today is not that day, though. If I got notice that IPv4 is going to be discontinued in a month and everything is going to be IPv6 from then on, my first thought would be “good riddance.”
There are plenty of new things I'm resistant to, like cryptocurrency, using AI to write code, and making everything a web app, but that's not because those things are different from what I'm used to; it's because they're worse than what I'm used to. IPv6 is not worse than IPv4.
I know for a fact I've aged past plasticity and IPv6 will never be 'natural' but then as far as IT guys go, literally no one I work with is younger than me lol!
I'm retiring soon and fine without spending more of my life expanding a knowledge set I may only use for a few more years, that said I am ABSOLUTELY into crypto and was an early miner before GPUs got edged out.
As far as AI writing code: It simply is the future. I am not exaggerating.
At some point humans will not write line by line code and being a coder will mean 'knowing how to best instruct AI to make code, then reviewing and verifying it', and at some point the code AI will write will be incomprehensible to human reading, just like how antennas are designed today.
We are in the infancy of it but I GUARANTEE you there is at lease 2 groups right now training AI on codebases alone.
Guaran-fucking-tee
And the stuff they will make will FLOOD the market with cheap, quick apps and basically turn hand coding into an artisan work or for specific use instances.
I would have expected a self-described graybeard to be more skeptical of new-fangled nonsense. Disappointing.
I am ABSOLUTELY into crypto and was an early miner before GPUs got edged out.
Then from your money you are soon parted. Cryptocurrency is nothing more than worthless electronic tulips.
As far as AI writing code: It simply is the future. I am not exaggerating.
Using AI to write your code is just plagiarism with extra steps, and will get you sued if the actual author of “your” code ever finds out. Once corporate legal departments realize this, using AI to write code will be strictly prohibited by company policy.
At some point humans will not write line by line code and being a coder will mean ‘knowing how to best instruct AI to make code, then reviewing and verifying it’, and at some point the code AI will write will be incomprehensible to human reading, just like how antennas are designed today.
How can you hope to review and debug code that you don't understand? How can you rely on code whose behavior has zero guarantees because it was written by the uncontrolled spasms of a tortured, bodiless bundle of artificial neurons instead of a genuinely-intelligent person?
You can't. AI code generation is useless to serious projects. Only artificial general intelligence is capable of doing the work of a human programmer, and AGI is intelligent enough not to willingly suffer the indignity of servicing insufferable meatbags, so that won't replace humans either.
That's only 140 IP addresses per person. With things like microservices and IoT, we have already passed that.
Every major website uses hundreds of thousands of IP addresses each. Every part of your car has an IP address. Every digital sign in public places have IP addresses. Every electronic lock might have an IP address. Every electronic that you own might already have an IP address. Every light bulb in your house will have an IP address.
But yeah, IPv6 is needed. The solution I think is not to make ipv6 addresses shorter, but to make DNS ubiquitous.
Every part of your car has an IP address. Every digital sign in public places have IP addresses. Every electronic lock might have an IP address. Every electronic that you own might already have an IP address. Every light bulb in your house will have an IP address
Yeah, but not a public facing one. My light bulb and your light bulb can both be 192.168.0.27, so long as our WAN IPs are different. I can understand 140 IPs per person being insufficient if every device was publically accessible, but I seriously doubt there has to be 140 telephone lines on the planet for each person.