Are there any VPNs that support dedicated IPv6 addresses?

Comments

• irmadlad@lemmy.world ⁨13⁩ ⁨hours⁩ ago

  From what I’ve read, he primary concern with VPNs that do not support IPv6 is leakage. If a user’s device tries to access an IPv6 resource while connected to a VPN that only routes IPv4 traffic, the IPv6 packets can escape the VPN tunnel. This exposes the user’s real IP address to external servers, undermining the privacy that the VPN is supposed to provide. Some servers have moved to strictly IPv6. Some servers only accept IPv4.

  Some of you networking gods set me straight.

  source
• litchralee@sh.itjust.works ⁨1⁩ ⁨day⁩ ago

  You might also try asking on !ipv6@lemmy.world .

  Be advised that even if a VPN offers IPv6, they may not necessarily offer it sensibly. For example, some might only give you a single address (aka a routed /128). That might work for basic web fetching but it’s wholly inadequate if you wanted the VPN to also give addresses to any VMs. And that’s a fair ask, because a normal v6 network can usually do that, even though a typical Legacy IP network can’t.

  Some VPNs will offer you a /64 subnet, but their software won’t check if your SLAAC-assigned address is leaking your physical MAC address. Your OS should have privacy-extensions enabled to prevent this, but good VPN software should explicitly check for that. Not all software does.

  source
• DundasStation@lemmy.ca ⁨1⁩ ⁨day⁩ ago

  I’m not too familiar with VPNs that offer IPv6 addresses, so I can’t help with that. But I’m curious about why some people want IPv6 addresses. Are there any benefits to having an IPv6 address?

  source

  • litchralee@sh.itjust.works ⁨1⁩ ⁨day⁩ ago

    ipv6now.com.au/primers/IPv6Reasons.php

    source

    • pHr34kY@lemmy.world ⁨1⁩ ⁨day⁩ ago

      Telstra (Australia’s largest telco) now provides IPv6-only to mobile handsets by default. They’ve deployed 464XLAT.

      source
  • pHr34kY@lemmy.world ⁨1⁩ ⁨day⁩ ago

    The main benenfit is not having to deal with NAT. You get your own address and your traffic is not conflated with other people’s.

    You also get privacy extensions. Your device generates a temporary address for making outgoing connections. The address has no listening sockets. This means that you cannot get portscanned by every website you visit.

    source
  • vextuu@ttrpg.network ⁨1⁩ ⁨day⁩ ago

    I’m not an expert, so somebody may be able to give better responses.

    It looks like IPv6 addresses have access to all 65,000 ports, whereas IPv4 addresses need to ‘forward’ them. I don’t know about other VPNs, but the one I’m using only allows forwarding 1 port at a time and I don’t get to choose it.

    With IPv6, I hope to be able to have multiple ports open to make it easier to host multiple services.

    source

    • Brkdncr@lemmy.world ⁨1⁩ ⁨day⁩ ago

      Port forwarding is a function of NAT. It’s only needed because there aren’t enough ipv4 addresses for every device, so in most networks a lot of devices share a single ip and specific ports are forwarded to specific internal hosts

      IPv6 has a large enough address space that this isn’t needed. You can still do it if you want. But mostly you just need a firewall without any NAT.

      There’s more to it than this but you should get the idea.

      source

      • -> View More Comments
  • hendrik@palaver.p3x.de ⁨1⁩ ⁨day⁩ ago

    One thing I did is connect to the smart home (Home Assistant) and the NAS running at home.

    source
  • devfuuu@lemmy.world [bot] ⁨1⁩ ⁨day⁩ ago

    There are some services that you can host cheaper with ipv6 only without having to buy and attach an external ipv4 address for example. I’ve been thinking of doing that for fun.

    source
• i_am_not_a_robot@discuss.tchncs.de ⁨1⁩ ⁨day⁩ ago

  Are you looking for a VPN or are you looking for an IPv6 tunnel broker like Hurricane Electric?

  source
• irmadlad@lemmy.world ⁨1⁩ ⁨day⁩ ago

  NordVPN I believe. Also AzireVPN owned by Malwarebytes. Some others do for a fee.

  source