Comment by neilalexander

Comment by neilalexander 5 hours ago

3 replies

View on Hacker News

If you assign a subnet to a host, or allow the host to claim multiple addresses via ND from the link subnet, then you can use as many addresses as you want. You could give every process on your machine its own IPv6 address for example.

bflesch 5 hours ago

Yes, and if your host has access to several IPv6 addresses and maybe an IPv4 address it'd be nice to have something like wireguard actually utilize all of them in some random order. Same on the receiving end, wireguard server listenes both on IPv4 and IPv6 at same time and internally puts received packets in the proper order.

I feel this would create significant struggles for any surveillance software because most firewalls I know are modeled on a source address / target address basis.

If you have access to enough source IPv6 addresses you might even put your whole wireguard traffic into ICMP packet payload?

Reply View 0 replies
vaylian 4 hours ago

> via ND

What is ND? Do you have a link with details?

Reply View 1 reply
  • immibis 3 hours ago

    Neighbour discovery - IPv6 equivalent of ARP

    Reply View 0 replies