goetz

Networking equipment maker #Unifi is late to the #IPv6 game.

The first thing I come across is, that they build #NAT66 support which is neither standardized nor needed.

Why?

Apr 8 at 5:03amWeb
Show threadmonotux20h ago

@goetz if you want ISP failover (with different prefixes) I guess it is more or less the only way?

Or maybe/probably they try to translate rfc1918 thinking into IPv6 with ula…ugh

Show threadgoetz19h ago

@monotux There are better ways to enable multi WAN #IPv6
Even for "cheap" ISP subscriptions without BGP.
But as everyone is applying the #IPv4 thinking to #IPv6 this is not well implemented yet.

https://media.ccc.de/v/denog17-78841-ipv6-multihoming-without-bgp-quo-vadis

IPv6 multihoming without BGP, quo vadis?

media.ccc.de
Show threadmonotux6h ago
@goetz sounds interesting, will watch!
Show threadJoe Seeder20h ago
@goetz yeah, they really don't understand, all of their managemant UI only shows and allows to config v4 addresses. In their #UNAS, despite obtaining stateless #ipv6 and actually exposing all services over it.
Show threadxHire17h ago

@goetz If a networking equipment manufacturer doesn’t understand networking… I guess the best thing to do is to avoid this company for anything related to networking. (Well, failing to support IPv6 for so long is already a big red flag.)

@monotux You can have multiple prefixes in the network and manage them with NDP RA – it can easily spread information that a prefix bound to an unavailable ISP shouldn’t be used. Hosts in the network then switch to the other one they have.

Show threadMarkus Probst1m ago

@goetz Unifi also does not support Radius over IPv6.

The web ui shows mainly the ipv4 addresses and treats IPv6 as second-class citizens.

I think the devices itself can't run with IPv6-only sadly. I have an own vlan for my unifi devices. To be fair, it has not been possible to make a single VLAN I have IPv6-only because compatibility.