Ipv6 is broken for those that want control over their home networks thanks to Google and terribly written RFCs.
All that was needed was an extra byte or two of address space, but no, some high and mighty evangelicals in their ivory towers built something that few people understand 30 years later. Their die hard fans are sure that this will be the year of ipv6. The Year of Linux on the Desktop will come 10 years before the year of ipv6.
I want per device firewall and DNS rules for myself, the wife and the kids. With opnsense or pfsense I don’t believe this is possible with SLAAC, which is what android only supports.
Shove all devices on a flat network with no special firewall rules and you are probably golden. But trying to control your own network, last few times I’ve tried, is impossible.
I’ve done this using separate networks, each device group I want to treat differently get’s its own subnet/vlan pair and I firewall the whole vlan. No matter what ips clients have (or even what ips they statically set themself) they can’t get past the firewall.
To physically get them connected to the network I use something similar to this config to have one wpa2-personal ssid that leads to multiple vlans depending on the password. Though you could also have multiple ssids with one vlan each or even wpa2-enterprise.
The router doesn’t know the IP of android devices (though it doesn’t need to), it only knows the vlans of the clients and what network they come from.
For all other clients I have dhcpv6.
DNS is on the router and can be set for each network.
This is working much better. I’ve retired my dreams of creating an AGI based on the communal activities of ants, and am instead gearing up for full ownership of the IP for the first premier league ant football team.
Ipv6 is broken for those that want control over their home networks thanks to Google and terribly written RFCs.
All that was needed was an extra byte or two of address space, but no, some high and mighty evangelicals in their ivory towers built something that few people understand 30 years later. Their die hard fans are sure that this will be the year of ipv6. The Year of Linux on the Desktop will come 10 years before the year of ipv6.
And 10 years before fusion power?
I don’t see how? Works great for my home network.
I want per device firewall and DNS rules for myself, the wife and the kids. With opnsense or pfsense I don’t believe this is possible with SLAAC, which is what android only supports.
Shove all devices on a flat network with no special firewall rules and you are probably golden. But trying to control your own network, last few times I’ve tried, is impossible.
I’ve done this using separate networks, each device group I want to treat differently get’s its own subnet/vlan pair and I firewall the whole vlan. No matter what ips clients have (or even what ips they statically set themself) they can’t get past the firewall.
To physically get them connected to the network I use something similar to this config to have one wpa2-personal ssid that leads to multiple vlans depending on the password. Though you could also have multiple ssids with one vlan each or even wpa2-enterprise.
The router doesn’t know the IP of android devices (though it doesn’t need to), it only knows the vlans of the clients and what network they come from. For all other clients I have dhcpv6.
DNS is on the router and can be set for each network.
What did Google do? Just curious as I’m not into home networking
They refuse to support DHCP6 and will only use SLAAC on Android devices.
Do they only use SLAAC because it’s easier to tie devices to MACs and therefore identities?
Broken how? What parts are not commonly understood?
See this post below https://lemmy.fwgx.uk/comment/2126323
is a /56 not enough address space for your home network
My home network is millions of ants with tiny little backpacks
you’ll never believe this
The backpacks themselves? I’m glad you asked. So, they each function on an actor model, where each potential state for each actor has its own address…
are there quintillions of states
No, actually tbh the address space is the least of my worries. At this point I’m gonna be honest, the ants just don’t wanna play ball
have you tried giving them tiny ant-sized balls
This is working much better. I’ve retired my dreams of creating an AGI based on the communal activities of ants, and am instead gearing up for full ownership of the IP for the first premier league ant football team.