Programmer Humor

32710 readers

407 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 5 years ago

MODERATORS

[email protected]

683

Basically the extent of my IPv6 knowledge (lemmy.world)

submitted 8 months ago by renzev to c/[email protected]

88 comments fedilink hide all child comments

Template source: https://web.archive.org/web/20210304000634/https://www.government.nl/topics/coronavirus-covid-19/visiting-the-netherlands-from-abroad/checklist

you are viewing a single comment's thread
view the rest of the comments

[–] ikidd 15 points 8 months ago (14 children)

NAT still has its place in obfuscating the internal network. Also, it's easier to think about firewall/routing when you segregate a network behind a router on its own subnet, IMO.

[–] eclipse 10 points 8 months ago (5 children)

Given how large the address space is, it's super easy to segregate out your networks to the nth degree and apply proper firewall rules.

There's no reason your clients can't have public, world routeable IPs as well as security.

Security via obfuscation isn't security. It's a crutch.

[–] Aux -1 points 8 months ago (2 children)

NAT is not an obsfucation, it's a proper security.

[–] eclipse 1 points 8 months ago (1 children)

Uh, how? Fundamentally I disagree. I'd recommend reading the many other comments on this post for more context.

[–] Aux 0 points 8 months ago

NAT is the basic principle behind a VPN. You isolate your machines from the network completely. I mean, if you want them to have internet access, then you don't need NAT, but if you want to isolate them and only have internal access, then why bother with IPv6 and setting up some weird firewall rules?

But I agree that NAT use cases are rare.

load more comments (2 replies)

load more comments (10 replies)