Comments on: Something Dumb http://blog.dreamhost.com/2005/09/26/something-dumb/ Tales From the Inside! Sun, 22 Nov 2009 23:18:54 +0000 http://wordpress.org/?v=2.8.6 hourly 1 By: Dmitriy http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1980 Dmitriy Mon, 19 Dec 2005 11:04:49 +0000 http://blog.dreamhost.com/?p=41#comment-1980 No mistake there? No mistake there?

]]> By: Jennifer http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1167 Jennifer Thu, 29 Sep 2005 00:45:24 +0000 http://blog.dreamhost.com/?p=41#comment-1167 *head explodes* *head explodes*

]]> By: Chris http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1165 Chris Wed, 28 Sep 2005 22:55:34 +0000 http://blog.dreamhost.com/?p=41#comment-1165 Wait wait wait. I have the Sweet Dreams account. It says I have unlimited domains.. WHAT? Is that true? I dont have to buy any more booster packs for more domains??? Is that a mistake? Wait wait wait. I have the Sweet Dreams account. It says I have unlimited domains.. WHAT? Is that true? I dont have to buy any more booster packs for more domains??? Is that a mistake?

]]> By: Denis http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1133 Denis Wed, 28 Sep 2005 00:12:38 +0000 http://blog.dreamhost.com/?p=41#comment-1133 I though Al GORE own the internet ;D :P ;) I though Al GORE own the internet
;D :P ;)

]]> By: Zach http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1132 Zach Tue, 27 Sep 2005 21:21:49 +0000 http://blog.dreamhost.com/?p=41#comment-1132 HOLY CRAP! Unlimited domains? Why'd this happen quietly? And the panel is cooler too? HOLY CRAP! Unlimited domains? Why’d this happen quietly?

And the panel is cooler too?

]]> By: darkwing duck http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1128 darkwing duck Tue, 27 Sep 2005 01:57:15 +0000 http://blog.dreamhost.com/?p=41#comment-1128 Jason, I agree that in general, /30 is wasteful, but the point of these allocations is that the address must be portable from one physical location, and network, to another. So I can pick up a host in Boston and move it to Minneapolis if necessary and keep the same IP, even if nothing else moves. Since this geographic portability and address stability happens to be important to the application, a /30 is the best approach that we've found to do it. I understand it's my own people's fault for allocating a /64 - that's why I made the point of saying I applied for the IPs internally :-) I see your point about address fragmentation, and I'm sure this is the motivation my local admins had behind their allocation practice. They're allocating out of a /48 network, I believe. josh, ARIN is almost certainly using automated tools to check. I don't know what they do - just a ping? If it's just a ping, it'd be trivial to fake allocations. Just put a ton of IPs as virtual interfaces on some box and they'll all respond, even if you don't use them. A guy I worked with in the mid-90's completely defrauded ARIN when they started requiring these justifications. He sent them detailed, but wholly fabricated documentation of our allocations, including invented conversations between real and fictional employees discussing various allocation issues. I found it amusing that he chose to make me the company's resident jack@ss and most of the profanity-laden comments had my name attached. He got the allocation he requested (easily 2-4 times what we really needed). Jason,

I agree that in general, /30 is wasteful, but the point of these allocations is that the address must be portable from one physical location, and network, to another. So I can pick up a host in Boston and move it to Minneapolis if necessary and keep the same IP, even if nothing else moves. Since this geographic portability and address stability happens to be important to the application, a /30 is the best approach that we’ve found to do it.

I understand it’s my own people’s fault for allocating a /64 – that’s why I made the point of saying I applied for the IPs internally :-)

I see your point about address fragmentation, and I’m sure this is the motivation my local admins had behind their allocation practice. They’re allocating out of a /48 network, I believe.

josh,

ARIN is almost certainly using automated tools to check. I don’t know what they do – just a ping? If it’s just a ping, it’d be trivial to fake allocations. Just put a ton of IPs as virtual interfaces on some box and they’ll all respond, even if you don’t use them.

A guy I worked with in the mid-90’s completely defrauded ARIN when they started requiring these justifications. He sent them detailed, but wholly fabricated documentation of our allocations, including invented conversations between real and fictional employees discussing various allocation issues. I found it amusing that he chose to make me the company’s resident jack@ss and most of the profanity-laden comments had my name attached. He got the allocation he requested (easily 2-4 times what we really needed).

]]> By: josh http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1126 josh Tue, 27 Sep 2005 00:48:18 +0000 http://blog.dreamhost.com/?p=41#comment-1126 Hmm, theoretically I guess they could! But hopefully ARIN would notice and figure it out... of course, if they just did it based on total usage, that couldn't happen! I guess an argument against total usage is that it makes it harder to compile the report, and harder for ARIN to check. However, anybody making a report has an automated way to do it (nobody wants to do even 4,096 IPs by hand), and ARIN only randomly checks various IPs for accuracy, so having the full report wouldn't really add any work for anybody (besides the poor script creating the report)! Hmm, theoretically I guess they could!

But hopefully ARIN would notice and figure it out… of course, if they just did it based on total usage, that couldn’t happen!

I guess an argument against total usage is that it makes it harder to compile the report, and harder for ARIN to check. However, anybody making a report has an automated way to do it (nobody wants to do even 4,096 IPs by hand), and ARIN only randomly checks various IPs for accuracy, so having the full report wouldn’t really add any work for anybody (besides the poor script creating the report)!

]]> By: C Montoya http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1125 C Montoya Tue, 27 Sep 2005 00:36:17 +0000 http://blog.dreamhost.com/?p=41#comment-1125 So if Microsoft could just re-allocate their latest allocation of IP's, and request another batch, and keep re-allocating and requesting, they could soon buy them all out? So if Microsoft could just re-allocate their latest allocation of IP’s, and request another batch, and keep re-allocating and requesting, they could soon buy them all out?

]]> By: Jason http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1124 Jason Tue, 27 Sep 2005 00:25:55 +0000 http://blog.dreamhost.com/?p=41#comment-1124 Oh, and even if (using /64 delegations) you cut the IPv6 network address space in half, there would be 2.2 x 10^20 (220,000,000,000,000,000,000) addresses for every square inch of the Earth's surface. One of the primary goals of IPv6 wasn't to solve the issue of limited address availability, but rather to make network routing easier by trying to avoid address fragmentation within organizations; in that vein, 128-bit addresses were chosen (since they allow many, <strong>many</strong> orders of magnitude more addresses than are needed, meaning that organizations can be given address blocks that are likewise many, <strong>many</strong> more addresses than they need). Oh, and even if (using /64 delegations) you cut the IPv6 network address space in half, there would be 2.2 x 10^20 (220,000,000,000,000,000,000) addresses for every square inch of the Earth’s surface. One of the primary goals of IPv6 wasn’t to solve the issue of limited address availability, but rather to make network routing easier by trying to avoid address fragmentation within organizations; in that vein, 128-bit addresses were chosen (since they allow many, many orders of magnitude more addresses than are needed, meaning that organizations can be given address blocks that are likewise many, many more addresses than they need).

]]> By: Jason http://blog.dreamhost.com/2005/09/26/something-dumb/comment-page-1/#comment-1123 Jason Tue, 27 Sep 2005 00:17:10 +0000 http://blog.dreamhost.com/?p=41#comment-1123 Darkwing duck, using /30 addresses internally is actually much more wasteful than you think -- because for each of those servers, you have two usable addresses <strong>and two entirely unusable addresses</strong> (the network address and the broadcast address). In general, if you put all the servers in the same larger subnet, you'd be a lot better off. Likewise, there's no reason why you can't have all the app servers on the same /64 IPv6 network -- the choice of allocating an entire /64 for each app server was one that you (or your organization) made, not the IPv6 gods. Darkwing duck, using /30 addresses internally is actually much more wasteful than you think — because for each of those servers, you have two usable addresses and two entirely unusable addresses (the network address and the broadcast address). In general, if you put all the servers in the same larger subnet, you’d be a lot better off. Likewise, there’s no reason why you can’t have all the app servers on the same /64 IPv6 network — the choice of allocating an entire /64 for each app server was one that you (or your organization) made, not the IPv6 gods.

]]>