Это видео недоступно.
Сожалеем об этом.
UniFi, Get your (IPv6) act together!
HTML-код
- Опубликовано: 2 янв 2024
- Today I rant on the state of IPv6 support in 'enterprise' equipment.
Support me on Ko-Fi if you enjoy my content and find it useful:
ko-fi.com/apalrd
Feel free to chat about IPv6 deployment on Discord:
/ discord
For anyone who's still curious why NAT is bad:
tailscale.com/blog/how-nat-tr...
#ubiquiti #ipv6
Come on, they don't have time for that, they're busing adding RGB to their Pro switches
They also don't have time to add proper Layer 3 functionality, even though they've been promising it for years. :)
That RGB Can actually be useful for troubleshooting or finding a port in a setup with a lot of switches, but I agree with the sentiment of your comment. There are things Ubiquiti could put on the back burner while the fix the core networking functionality, and I class IPv6 as a core function
A realistic view of Unifi on RUclips... Wild.
I like that you call IPv4 "legacy" and IPv6 "modern".
Quality channel.
This should happen way more often: People telling the truth about stuff.
Unfortunately, this won't make them profit, so... ¯\_(ツ)_/¯
And I call "jurassic" and "current", sometimes "standard", protocol - respectively
Psst..if ip4 is legacy, go “modernize” your local hospital with ipv6. Have fun with getting the hundreds of millions of dollars in medical equipment to work with your “modern” stack, make sure to let all of the patients know that its not your modern stack that is preventing life saving care, it’s that darn “legacy” equipment that can’t handle it.
@@druxpack8531 supporting IPv6, the current protocol, does not mean NOT supporting IPv4, the legacy protocol. Nobody is arguing to drop IPv4 support in any gear. At least nobody I know of. Certainly no such argument was made in the video.
@@druxpack8531 Mind you, IPv6 got introduced 28 years ago.
@@druxpack8531 you know a lot of hospitals also use windows XP, Vista, or 7 because of that pesky medical equipment you mentioned, but does that make Windows XP modern? Don't be silly
I enable L3 routing on my Unifi enterprise switch which is behind my OPNSense router, then i realized it can only do IPv4 L3 routing. Unifi are so behind the game.
TBH people running unifi in Business are usually the same saying nat is a security feature and ipv6 is a security risk
Thank you! I started looking at ipv6 and found your videos, very informative. I was configuring my unifi udm se (v 8.1.127 ) with my Comcast ipv6 connection (set my prefix delegation to 60) and at ~6:20 on your video I do see an ipv6 address now. Hopefully unifi is listening to your suggestions!
I recently setup a Unifi Express and wasn't getting ipv6 from my ISP, when I was before with my old setup. Looking at your settings at time stamp 2:50 and 6:24, I am now getting ipv6 from my ISP. Thanks for the video! Yes, I agree that they need to get their shit together regarding displaying ipv6 information.
I knew that they were not great with IPv6, but this is just tragic. I don't know why people call them a "prosumer" bradns, as IPv6 is something a "prosumer" would most likely want. I know I do. Thankfully, I only have one of theirs APs left, and I'm probably gonna replace it soon, as it's a pain in the ass to manage. Good PSA, more people should care like you do.
It could also be about scope, since there is not that much feedback to unifi about ipv6 they may not if looked at putting it in the UI. I mean this is the first vid I have seen on this talking about it. If feedback is given to them (including this) it may be added. Looking around my controller and I do not see anything in the client list about IPV6 addresses. This is assuming that V4 is what 99% if the user base would use.
Really good presentation as always.
I agree with your comment about the WiFi connection type. A while ago, after asking in the Ubiquiti forum to disable 802.11b. I think it's now time to disable g & a, but don't remember how I disabled b and the interface has changed, without a clue as to how to change it.
Well said. I was pleasantly surprised IPV6 "just worked" on my new UCG Ultra, which was an improvement over the USG3. But the lack of information in the UI is very annoying in 2024.
@12:46 From working with businesses big and small.. in my experience is nobody is switching to IPv6. I use it at home, but when I’ve pushed for it it’s always met with much more resistance than I’m willing to fight against
I dont think its an issue about "dont want" but the result of years of fearmongering. Like when ppl spout a BS like "IPv6 doesnt have NAT so everything on your network will be publicly available!"......
@@jagdtigger I think for most of these businesses and the people running IT at them don’t appreciate what IPv6 brings to the table.
“IPv6 is v4 without NAT”
They see features like NAT as a security feature and getting rid of it as less secure.
They’re so used to working with v4 subnets that having to learn and think about a new system is inefficient.
Etc..
@@jagdtigger Or perhaps clueless ignorance. They simply don't know any better.
i'm a complete noob to v6 and your prior videos had made me start to try and "play with it" but i'm 100% Ubiquiti and my internet comes via Frontier (which I believe your stats shows at less than 1% adoption). Anyway, there was no "play" in the playroom that day. I called tech support to try and get some more specifics about there IP6 policies and settings (as I'm using my own equipment not their router). No one I talked to were allowed to make utterances that sounded like the number 6 and one of the people may have been dragged out back and shot while servicing my call for simply acting like my questions sounded reasonable. ;)
Anyway, thanks for the Ubiquiti public shaming; let's hope they take some damn action. I'd really like to find that great IP6 playground in the sky someday.
The UI would be less pretty if it had to handle those long IP addresses so they just don't do it. :)
May be common solution is only AP from ubnt, and may be Poe switches. In my experience there are no issues with IPv6-only VLANs. Of course management vlan is ipv4.
Is it the same lack of information if you enable the legacy/old ui?
Yep
Without even watching...just the title has me say YES!!!!!
The beta versions have a lot of ipv6 reporting improvements in the GUI.
Correct, but most points highlighted here are still a thing.
Have fun using unfinished software on a production environment, then.
@@UnderEu I've done it for the last 5 years pretty extensively, with environment up to 1000 users, and multiple sites. Honestly, if you don' t play with the latest fancy features and stick with production releases, it works well, at a pretty unmatched price point. Now I'm keeping firewall for small businesses, and switch to more serious products when higher security is needed. Wifi, switching and a few VLANs ? no issue, really. VPN, RADIUS, IPv6, logging ? Run away.
Still managing IPv6 DHCP reservations, subnets or device DNS is not possible. Also: Is Threat protection and geoblocking even working on IPv6?
@jordanrodrigues1279 I mean the Treat Protection and Intrusion Detection features in the UniFi OS Dream Machine lineups. Does the UDM use Kaspersky for detection? I thought it was something Ubiquiti made themselves, since there aren't many (detailed) configuration options.
Oh yeah, as much as I like UniFi for Wi-Fi APs and Switching... unfortunately they are useless for IPv6, VPNs, firewall and routing in general and absolutely, pfSense does much better job here. Ubiquity attitude to IPv6 is disaster.
At least unifi ipv6 works reliably. Switched from tplink when it was having more bugs than even the verizon 5g modem as the router.
While IPv6 is getting more and more common, a lot of the BIG providers, including Cisco on many of their devices and services, are not yet fully IPv6 compliant.
that's kinda funny since Cisco has included IPv6 in their CCNA for about a decade now
@@apalrdsadventures I know. However, Meraki (owned by Cisco), just added IPv6 support to their equipment last year and OpenDNS, also owned by Cisco, won't allow you to register your IPv6 network so that you can set custom filters. Also, while much of their equipment does support IPv6, I've found it doesn't always support all the rules. Such as, a link local address is FE80::/10, but if you use anything other than FE80 for the first hextet, it won't recognize it. Also, for a Unique Local address, the address range is FC00::/7, but if you try to use FD00, again it will fail. These may have been fixed since the last time I tried, I don't know.
Another example is Netgear. While their home routers support IPv6, they won't allow you to adjust the Router Advertisement Message to set the router as SLAAC, SLAAC + other info from an IPv6 DHCP Server, or tell the client to use the IPv6 DHCP server exclusively. Now, most home users aren't going to be running an IPv6 DHCP server, but still, that should be supported. Also, if using the latter, the router shouldn't advertise the prefix.
Yeah, huge difference between Cisco Cisco and Cisco Meraki in IPv6. One's for service providers (who do care about v6), and the other is for businesses (who don't care about v6).
Also small nitpick the router always advertises the prefix even with DHCPv6, as it's still the gateway and the prefix is on-link.
You're absolutely wrong about Cisco not being fully IPv6 compliant.
@@hafeezhamama9580 I should have said they aren't fully functional, not compliant. What they've implemented works and appears to follow the rules (i.e. they're compliant); however, they haven't implemented all the rules. One of the examples I gave was Unique Local Addresses. The range for ULAs is FC00::/7. That means that the first 2 characters must be either FC or FD, but the last time I tried, the equipment would reject an FDxx address being entered. They had implemented FCxx and it worked, so it was compliant. While it wouldn't let me enter a FDxx address, what would it have done if connected to another device that did use an FDxx address? I don't know. If it had problems with that, then no, it wouldn't even have been compliant.
YES! please call out "modern" tools and platforms for missing what we should be progressing towards.
maybe unifi gear is too behind the times for anyone trying to do anything modern.
Thank you! IPv6 is a nightmare on UniFi, I'm really really disappointed at the moment, even the cheapest competitiors are beginning to do it better by now. I really hope IPv6 gets a first class feature this year.
I don't know which old Mikrotik Wifi devices you have. For some old Mikrotik Wifi devices it is now possible with the new Mikrotik firmware updates to replace the Wifi package and install the Wifi Wave 2, where it was previously not possible due to insufficient RAM. As far as I know, this is not possible with the MIPS devices, but ARM is required. I assume you have that. Best regards from Germany :)
Yeah, mine is an older MIPS model, it's upgraded to 7.13 but doesn't get the new wireless package for WPA3.
I'm kinda waiting for a new wAP AX to come out to get another Mikrotik AP, since I like that form factor
I have a router that is working fine for IPv6, everything works beautifully for wired, with DHCPv6-PD from my ISP giving prefixes to my subnets and then stateless auto configuration internally. But my wireless AP is a UniFi, and all the SLAAC router advertisements and everything just don’t get through… IPv6 just won’t work at all for me for some reason. I can’t find anything in the docs, and people in community threads tell me to change an option that disappeared out of the UI seemingly in an update that came out about three months before I started trying to get it to work. Now I have no idea if it’s been moved and renamed and what the setting is called now…
IGMP / MLD snooping? It's possible that they are blanket dropping multicast if they don't see an IGMP announcement, and IPv6 wouldn't use IGMP (an IPv4 protocol), it would use MLD instead (part of ICMPv6). v6 doesn't do broadcast, so multicast functioning (even if it's treated as broadcast) is pretty critical.
My AC-Lite has no problem with IPv6. However, I used to have a TP-Link access point that didn't handle VLANs properly and allowed multicasts, such as router advertisements, to leak from the main LAN to the VLAN, which broke IPv6 on my guest WiFi. Apparently some switch models have the same problem.
Yeah I am now finding this out the hard way with my new ISP, they don't publicly route the IPv4, but I do get assigned an IPv6 and looking at recreating my personal tunnels to AWS and Azure looks like its going to be a chore. I just found this out today, so I am still looking into a solution I can implement lol
Sounds like Unifi isn't going to do it!
You could also go directly and not through a tunnel, and use IP range whitelisting on both ends.
Video Idea. I have no IPv6 ISP options, zero. using pf or opn sense, how could I set a IPv6 lan and translate that to a IPv4 ISP. Or does that way lead to madness? Thanks for the great videos!
You can use a tunnel such as Hurricane Electric, which will get you global connectivity with higher latency than native IPv6.
@@apalrdsadventures Very cool, I'll try it out!
That was super easy, HE had a link to the pfSense setup and now I have IPv6 and can ping googles IPv6 DNS. Thanks again! @@apalrdsadventures
Does use IPV6 mine do 😀
They also don't properly support SNMP. Their customer service basically just asks "what about the current UI would cause you to need SNMP?" 🙄
Hey, so this video is very interesting. I’m asking this at a true curiosity what do you use the IPv6 address for? I work in IT, granted on the app development side, but for any kind of operations or infrastructure, my company which is a giant fortune 100 company. Everything internally is referenced using IPv4. Like I said I’m on the app development side so I don’t know all of the different products, I have not come across one instance of us using IPv6 address. What is the benefit?
The IPv4 address shortage forces the use of NAT, which breaks things, including end to end transparency. I get a /56 prefix from my ISP, which breaks down to 256 /64 prefixes. I then give one of those to my LAN, guest WiFi, test LAN, OpenVPN and an old Cisco router I have. These are all public addresses, should I want them to be. IPv6 allows the Internet to be the way the network gods intended, before NAT broke it.
The Internet was designed to have end to end connectivity. But since there's not enough v4 addresses and many still use IPv4 for some reason there had to be NAT, then CG-NAT etc. Everything involves translation which takes more time and if youre behind CG NAT it's way easier for your provider to spy on you aswell. IPv6 is point to point and therefore faster and there's less broken programs due to NAT breaking shiat. Also if youre self hosting you oftentimes get no public v4 so you have to use v6 anyways
Great Video. IPv6, mDNS and IGMP are all garbage on Unifi, even now in 2024. You are right, this is totally unacceptable. I also do some home automation and Matter relies on IPv6 and this is also highly unpredictable with Unifi. I am considering going to TP Link Omada and selling my current Unifi equipment and cameras.
When you were talking about 802.11, did you mean AX on 2.4GHz? If that is the case, as far as I understand it the standard doesn't actually support AC/AX on 2.4GHz officially and the the 2.4GHz only has BGN and 5GHz has A,N,AC,AX
AX standard does support 2.4/5/6Ghz (AC only supported 5Ghz), but the config for the UDR seems to be stuck on N/AX on 2.4/5Ghz. It's not particularly important for me but in high density deployments, moving some clients to 2.4Ghz improves spectrum utilization overall. But I also can't find how to disable B/G legacy support on 2.4G or N on 5Ghz either (most APs have options like b/g/n or g/n or n-only, and on 5ghz n/ac or ac-only).
I have a Unifi AC-Lite AP and run pfSense for my firewall/router. As expected the AP passes IPv6 and the server also uses it, but the AP itself apparently can only use IPv4 for configuration, etc.. I use OpenVPN on pfSense and it's configured for IPv4 & IPv6, both for the tunnel and end points. I have been running IPv6 for about 14 years, initially with a 6in4 tunnel, but my ISP (Rogers) has provided native IPv6 for over 8 years. Their cell network is also IPv6 only.
I agree the world has to get off it's butt and move to IPv6.
When selecting columns to show, one of the options is "IP Address." There is NO option for IPv4 or IPv6. It just says "IP Address."
"Touché!"
Yo speaking of opnsense being better, you still planning on more opnsense videos?
I have them on my todo list still
Try an ISP that has DHCPv6(prefix delegation) without RA......
github doesnt support ipv6
Would you mind comparing this to other options?
yup, TP-LINK's OMADA system comes to mind!
As a Dream Machine Pro owner, IPv6 is fully supported, and not all that difficult to setup. Took me about 5 minutes to get it working on my box. Now I have a new ISP, that doesn't support IPv6, so I have an entirely different issue, what Unifi doesn't support is IPv6 tunnels, so I can't set up an HE tunnel very easilly in it. It can be done, but it won't be supported through the UI. It's a real annoyance.
IPv6 is certainly not fully supported if I can't put an IPv6 address in a box that asks for an IP address.
The hardware fully supports it but the software doesn't. They just need to hire more software developers to support their current products instead of creating stuff nobody asked for
Well, i will be staying away from purchasing Unifi products if that IPv6 fuckery persists. I get a /48, would be a shame if i didn’t use it.
Recommendations for 10 GbE L3 switches? Zyxel? TP-Link? Netgear? Old and rusty Cisco?
I use Mikrotik, they are cost effective with a huge feature set. There are probably cheaper options if you don't need L3 capabilities, ServeTheHome is who I would ask for low cost.
@@apalrdsadventures Mikrotik would be ok, but their NBase-T switch (CRS312-4C+8XG-RM) does not have enough ports. And ideally i don’t want more than 1 switch, because power is expensive here. So i am looking for a switch with a mix of NBase-T, SFP+ and maybe even SFP28 ports. POE++ would be a plus too.
Well done
Glad you like it!
I have used Unifi AP in my apartment for years and I setup my parents with two Unifi APs at their house last year. I planned to manage them from my apartment but the fact the APs don't work with IPv6 to talk to a controller means I've had to run a controller off my mother's desktop for now. That desktop only sometimes gets turned off so that means things like updates to the APs are rare. I will hopefully soon drop a old router on their network as a VPN connection so that the APs can reach my controller but I would much rather them just be able to reach my controller using an external IPv6 address but alas they can not.
if you wanted to get away from unifi wifi APs, what would you recommend? price being the main factor
Cambium is the next step up, definitely moving from prosumer to enterprise though, although their prices are pretty competitive with the prosumer market.
The only issue I have with their APs is the management interface is IPv4 only. Otherwise IPv6 works fine.
I subscribed to your channel! Congratulations on showing important points!
They need to give the possibility to configure static IPv6 addresses for hosts through the UI (static IPv6 mapping). Please correct me if I'm wrong, but I was unable to configure static IPv6 addresses for devices that run services on my local network, I have a UDM Pro SE and I agree with everything said in the video!
In general, you can rely on the host's stable privacy address and there's no need to set static DHCPv6 leases (especially because DHCPv6 in general is not used). Some hosts (i.e. Linux usually) give the option to use EUI64 which is MAC-based and stable across prefixes.
@@apalrdsadventures Could you make a video explaining this? I have a Windows machine running a service, I'm not an expert but from what I understand Windows uses a temporary IPv6 address that changes constantly. So how to set a static IPv6 for this machine? And to make matters worse, my ISP provides a dynamic IPv6 prefix, so I always end up losing the external connection.
So the prefix changing can’t be dealt with on your end, but at least with Comcast it tends to last years for me.
In windows if you run ipconfig you’ll get a list of addresses, some of which are in the 2xxx range and some say temporary. There should be one that’s not temporary, that’s the stable privacy address. The rest should rotate every day or so. Every OS has a slightly different among for them, but it’s the one that’s not temporary.
@@apalrdsadventures Linux desktop workstations have a neat trick up their sleeve. There is a option via the network manager that I can randomize the MAC address for IPv6 which I don't normally use.
Yes that is just another think impossible in UniFi GUI. There was a way to do it via config.gateway.json file but that is gone as well with new UniFi OS so no luck over here.
In my experience Unifi is like a ford pinto with a tesla wrap on it
My lumen / quantum / CenturyLink fiber has no native ipv6. There is ipv6 RD, but it doesn't work with the ont in router mode. It's very dumb.
Not as dumb as their identity crisis - why changing their own names every, I don't know... 2 or 3 seconds? :P
Yep, one of the few downsides with my setup.
Using current IP on ubiquity is looking pull I teeth. It's ashame because it's just a software problem and their hardware is nice
Unifi guest WiFi also does not support IPv6 sadly
Mine does. However, I'm running pfSense for my router/firewall.
@@James_Knott do you use the guest portal wifi, or just a guest vlan?
@@danielpW5673 Guest VLAN.
I work for an MSP and we roll out ALOT of unifi equipment. I can confirm, at leasr here in Miasouri no one thinks the end of IPV4 will ever happen in a way that will hinder business. I hope UniFi gets their act together soon, or I'm going to be going to alot of our clients and replacing not that old/performant equipment.
Your MicroTik Radius/EAP/WPA video is the only thing that's ever made me jealous of another wifi AP system and you're thinking about moving to Unifi?
I really want to find a wifi 6e AP. I already know their software is great, but they are currently slow to release new hardware for wifi 6. So I'm sticking with what I have for now.
@@apalrdsadventures not sure if they do 6E ones out yet but the Grandstream AP's are good. They run the controller locally for a bunch of devices directly on the AP, IPv6 is up front in the UI etc. I actually dropped all my Unifi gear because of constant IPv6 issues and switched to Grandstream for WiFi.
The amount of CGNAT due to v4 exhaustion is definitely pushing up the v6 usage locally here, with only our largest telco not supporting it for residential... APNIC won't assign more than a /24 if your doing your own network but they'll give you a /32 of IPv6 😅
@@TheDark0rb Nor APNIC nor any other RIR has jurassic addresses to deliver, it is exhausted!
@@UnderEu APNIC does have IPv4 blocks for allocation, but has very strict rules and will only do /24's and only to new orgs. They also greatly reduced the time to "recycle" returned IP space, put a requirement to hold for five years before being able to transfer to another org (e.g. selling them on) etc., I think they managed the process better than ARIN/LANIC/RIPE, not that it's a high bar, but the upshort is if you want to start a new network in the APNIC region you actually have a hope of getting a small v4 block - like it or not you can't run a new ISP - or any kind of network - on pure IPv6 currently. Here in NZ our largest telco still hasn't bothered putting it out to residential users because it doesn't affect them. I hope that'll change but sadly I also know many people who work in IT who are "*shrug* why should I bother doing IPv6, it's effort".
Just: well said!
They are still building the future and releasing the past. lol
I'll boost your engagement.
Unifi sucks in many ways. IPv6 is just one of them.
My ISP doesn't support IPv6 anyway on the Residencial side. So I need a router that can handle IPv6 tunneling. Unifi definitely isn't designed for that.
Unify is built like an Apple device, dumbed down enough to where your average American (If you aren't from the EU you probably won't understand that this is supposed to be an insult) can figure it out. Unify is great when you want a simple plug-and-play setup for your average Joe, if you want options, build your own, or buy a Mikrotik or some other vendor targeted at being versatile, not necessarily easy to use.
What is the monitor by your keyboard called?!?!
the whole unit is a Kwumsy K3
unifi and IPv6 is overprised, chaotic with fancy ui, but needed fuctions are not there - i am disapointed with unifi equipment, i will stick to Openwrt and Mikrotik systems.
GbE stands for Gigabit Ethernet? Not sure how you missed that.
Calling GbE an 'experience' is a very strange way to describe a link rate.
@@apalrdsadventures Don't forget, they're a Chinese company, IIRC. That could explain the strange English.
so glad I ended up not going with Unifi for my network rebuild
Way to ruin my excitement for my UDM pro getting delivered today. 😢
You can always return your bought items ;)
When your network is large enough that you need v6 internally Ubnt is just not for you. It's not for enterprise-level stuff, just SMB and prosumers. But I agree that it should give you info about v6 on the WAN side, as that is where SMBs and homes get more and more v6+CG-NAT.
In the future this will obviously change, and Ubnt should long be ready.
Ipv6 use is not dependant on network size
My only IPv4-only network in my entire home lab is my UniFi network.
Everything else on all the other networks is either IPv6-only or dual stack.
Ubiquiti being so terrible at IPv6 for so long is just comically bad.
you can probably SSH into the thing and get IPv6 configs to work EdgeRouter style, but probably not for the WireGuard stuff
UniFi stuff is so bling and showy. You can’t even add DNS records to gateways without hacky solutions. VPNs are a mess, and not compatible with multi-wan setups. Not Pro at all….
VPN’s are fine in unifi. you must be terrible at it. DNS can be handled externally and thats best practice and you know that.
Tbh, the features you list are not for the 99% of people buying this shit and thats a fact.
People need scalable wifi, switches and everything in one interface; That’s it… thats the customer base…
really i think you should break from unifi and goto all in on opnsense - i would really like to see you do a ws and dual nas with 3 dual port 56g connect-x cards - no switch needed. why not build a custom opnsense box with a couple 40g and some 10g - i think the pci lanes may be the limiting factor? you may have to goto a server platform and use like 3 dual port 40g and 2 or 3 10g cards - it should be possible and then you could by pass unifi
I'm currently using all OPNsense for routing and Mikrotik for switching. Unifi is something I was curious about for APs only, but apparently they can't even do that properly it seems.
@@apalrdsadventures opnsense can do it all - routing and switching with no ipv6 probs plus you may be able to get a product out of it? i think it depends on availability of the hw - if you lack ports you could always do a lil natting? pls followup on this thread and keep cranking - it really should be a great year - lots is going to happen, going to 40g on some parts of the network could work out well and end up saving you quite a bit of time - the 56g third gen cards are 50 bucks which makes it compelling but of course this is just speculation - consider options anyways
@@apalrdsadventures I use pfsense for firewall / routing while my several MikroTik switches are for switching. VLANs on them are actually a breeze once you figure it out on the MikroTik's bridge. I am a bit surprised that Unifi hadn't fully implemented IPv6 as it's becoming more and more common now. Ah well, maybe someday they will catch up.
Imagine not having a layer 3 switch in 2024 come on sheesh unifi
It is quit disheartening....
Eh. I never really have a ise for ipv6 on lan. All my hosted services have a simple IPv4 adress i can remember.
If you don’t have v6 on lan then none of your clients can join the v6 internet
You're not supposed to remember literal addresses, that's why DNS exists.
@@UnderEuYou never worked in an enterprise
@@magog6852 The enterprise I work has all their servers properly assigned in DNS, globally, and it works - the only thing is that they vehemently not only ignore the existence of the current protocol but do lots and lots of KB articles and scripting to intentionally disable it wherever they find "necessary". The irony is that they are rolling out mobile devices to v6-only carriers and they refuse to get why users can't tether their laptops into their phones and do work.
@@UnderEu that makes sense using services like heimdall when your services are in containers. But i only really use a handful day to day. I
don't put these services a vlan, it is just easier not creating rules for those particular ones.
Proxmox, unifi, home assistant, jellyfin, ect. 192.168.1.X remembering a single number is just the most "minimal effort, maximum satisfaction". How would go about it?
yeah...unifi has been total shit for the money sunk.
19:49 Microsoft is part of the problem here for IPv6 adoption. How do we get Microsoft to do it proper ?
IPv6 is fine on Windows, they just won't enable the 464xlat CLAT on non-wwan interfaces. But that is not a big issue for v6 adoption, just v6-only adoption, and only when dealing with legacy-only services that don't also do DNS (a very narrow range of things that mostly includes peer-to-peer connections)
I suspect the issue will solve itself once they finish their transition to v6-only on their own networks.
@@apalrdsadventures but it seems so silly they don't want to support the xlat, because the code clearly already exists, probably should combine it with RFC 8925 and maybe an other option. I think their was a ipv6 router advertisement option I wanted them to support as well. Blanking on which one though..
RA flag is pref64
@@apalrdsadventures ahh, yes, that was probably the one I wanted them to support (if they don't already).
I don't know really anyone who uses ipv6
About 60% of the global internet traffic. Yeahhhhh, really wonder who....
it is one of the biggest nothingburgers. my entire career has been people fear mongering it like the autist in the video
IPv6 is just around the corner
"Just around the corner" since 1995 (RFC 1883)
I turned that corner 14 years ago.
Seems Unifi are so far behind the IPv6 band wagon as it's not even funny. IPv6 been around for Y E A R S so it's something they should already support. Ah well, I guess they're half-assing it right now.
Step 1 of network setup. Disable IPV6.
Step 2 literally everything else working fine without issues.
Any people deploy this in the enterprise.... yea. No thanks.
Well, it depends. A number of startups just don't even have single on-prem server, so basically just accessing the internet. You can do that with Unifi at a reasonable cost. Also think about hotels or public spaces, this works pretty well.
Anyone using a captive portal network should probably care about security enough to use WPA3-OWE though, which Unifi also doesn't support (unrelated to their poor IPv6).
for a company claiming to build the future of IT… you guys should at least support, like, at least the current state of IT 😂😂😂😂
Absoluut BS ipv6 works great
*shrug* my Dream Machine Pro supports IPv6 just fine. Including prefix delegation. Maybe you just don't know what you're doing.
It’s completely functional downstream but nowhere in the UI can I see the status of prefix delegation, what was received, or the v6 address of anything. The only way I know it works is by testing it on a downstream device.
@@apalrdsadventures And no control on ND or RA. Announcing DNS servers is very limited for instance. So many things are missing.
ipv6 is a meme for home and small business.
Not defending Ubiquiti, but ipv6 is a failure. Stop promoting something that is only being adopted at the carrier level.
What's such a failure about it? It's just IPv4 with longer addresses.
just because we have a stopgap (NAT) doesn't mean there isn't a better solution that we should be pushing for.
What are you talking about ? IPv6 is dominating, at every level, and this is hugely demonstrated in the video. Having a "business" product that does not handle IPv6 basics is just a shame. I'm a large user of Ubiquiti, which provides excellent performance and features a a reasonable price. But their handling of "pro", "business" or "entreprise" is ridiculous.
This is bait
It's' much more than that. You can rethink your NAT (bye bye), DHCP and even DNS setups. You can work with much longer MTUs more easily, routing is much faster. It is just more modern, and yes, we get more addresses.
When sigma males get mad
just update to 8.0.26