Next Generation Anime Communications?

[varjohaltia]

So I've been dealing a lot with IPv6 at work lately. There are, frankly, rather few services out there in the Western world that actually are IPv6 enabled. I was consequently rather surprised when reading a network operators' conference presentation I found out that one of the most popular IPv6 sites was... Animesuki!

; <<>> DiG 9.3.3rc2 <<>> ANY www.animesuki.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49625
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 5, ADDITIONAL: 5

;; QUESTION SECTION:
;www.animesuki.com.             IN      ANY

;; ANSWER SECTION:
www.animesuki.com.      84766   IN      A       66.152.171.25
www.animesuki.com.      84766   IN      AAAA    2001:4d88:ffff:ffff:30:524:ac23:2

;; AUTHORITY SECTION:
animesuki.com.          84766   IN      NS      ns14.zoneedit.com.
animesuki.com.          84766   IN      NS      ns5.dnsmadeeasy.com.
animesuki.com.          84766   IN      NS      ns6.dnsmadeeasy.com.
animesuki.com.          84766   IN      NS      ns7.zoneedit.com.
animesuki.com.          84766   IN      NS      ns7.dnsmadeeasy.com.

;; ADDITIONAL SECTION:
ns5.dnsmadeeasy.com.    84348   IN      A       63.219.151.12
ns6.dnsmadeeasy.com.    84348   IN      A       64.246.42.203
ns7.zoneedit.com.       7343    IN      A       216.122.7.155
ns7.dnsmadeeasy.com.    5247    IN      A       205.234.170.139
ns14.zoneedit.com.      72661   IN      A       209.126.137.108

;; Query time: 2 msec
;; SERVER: 131.247.100.1#53(131.247.100.1)
;; WHEN: Thu May 17 10:25:50 2007
;; MSG SIZE  rcvd: 271

And their web server really does run over IPv6, this isn't just an errant AAAA entry.
Geek synergies unite?

Comments

[dracosphynx.livejournal.com]

Hey, have they gotten dual-homing working under IPv6 yet?

[varjohaltia.livejournal.com]

The last discussion on the topic led to a big fight and there wasn't a good solution. I'm not sure if any of the real committees at the IETF etc. have figured it out.

[dracosphynx.livejournal.com]

Well, that's certainly not going to help encourage people to deploy it, without a solution to that. Not to mention having the provider's network portion of the address built into every IP address (and hence every SSL key, etc.) that people use on their network. Hopefully they'll figure something out. :)

[varjohaltia.livejournal.com]

As it happens, I just read a thread on this topic -- presently it's still broken, and nothing good is expected to appear, and people are quite aware that this will kill a lot of IPv6 use.

As far as the certs go, that's a very good point as well.

On a separate note, check out SEND/Cryptographically Generated Addresses (http://www.rfc-archive.org/getrfc.php?rfc=3972), I thought this was pretty clever.

[dracosphynx.livejournal.com]

Yah, I figure the cert issue is going to make people think about IPv6 NAT in running large campus environments. I mean, if changing network providers is going to require you to redo every single internal IPSEC setting, all your SSH files, maybe even server software license keys... well.