More

mrsssnake · 2026-03-31T22:02:47 1774994567

My work guest WiFi network allows only IPv4 HTTPS on port 443 and their their own DNS. Everything else, including ICMP (ping) is blocked. Tailscale barely works as any persistant connection is dropped after 2-3 minutes.

Called this out and the security team said noone complains, that there is no use case and they do not want to deal with security risks.

And the ossification continues.

lostlogin · 2026-04-01T12:46:00 1775047560

> Called this out and the security team said noone complains

Classic. And this probably works do every complaint. You need an irritated executive.

justsomehnguy · 2026-04-01T10:07:25 1775038045

> IPv4 HTTPS on port 443

TCP or TCP and UDP?

SSTP can work if they don't look at the traffic too hard.

dheera · 2026-03-31T22:03:58 1774994638

A TCP over websockets VPN would be fairly simple to write, or ask an AI to write for you

mrsssnake · 2026-03-29T16:19:57 1774801197

Even without CGNAT you'll only get one IPv4 address forcing a absurd amount of workarounds to be usable, that are mostly hidden in firmwares but sill there.

mrsssnake · 2026-03-29T16:15:17 1774800917

Much less pain than people wanting to have something you could connect to would experience.

mrsssnake · 2026-03-29T16:13:48 1774800828

Dual stack IPv4+IPv6 is still the easiest, but at least the author learned a lot and it helps finding issues in software.

mrsssnake · 2026-03-29T16:12:33 1774800753

> able to run ~340 undecillion devices on my home network

You now can have these devices connected to network called Internet.

Unlike IPv4 were the number of devices on the Internet in home network is one (the main router) or zero (in case if CGNAT) and the others just pretend.

mrsssnake · 2026-03-29T16:09:23 1774800563

This video summarizes it nicely

https://www.youtube.com/watch?v=42Hy4JtBeQA

mxuribe · 2026-03-29T16:29:29 1774801769

Thanks for sharing this! Every few years, i forget the "why" advantage of IPv6. :-)

mrsssnake · 2026-03-24T00:01:11 1774310471

What is a router?

Really, do they have a definition?

protocolture · 2026-03-24T00:08:53 1774310933

Device that connects multiple networks? Layer 3 of the OSI model? Consumer ones tend to have more than that, but the more specific definition would work fine.

Yeah conceivably you could use this to ban any network device that is capable of routing between interfaces, so lots of switches with new firmware could do it, often terribly, as well as PCs with multiple interfaces. But its probably going to involve intention.

dmonitor · 2026-03-24T06:11:19 1774332679

Any PC with a NIC is one VLAN and masquerade rule away from being a router

adrian_b · 2026-03-24T09:08:23 1774343303

That is true, but you can also add USB Ethernet interfaces to any PC, which is even simpler.

For example, my router/firewall, which also implements various other network services, e.g. hosting my own e-mail server, is an old Intel NUC with 5 Ethernet ports, 4 of which are made with USB Ethernet interfaces.

otterley · 2026-03-24T04:15:29 1774325729

The definition is at the bottom of this document https://www.fcc.gov/sites/default/files/NSD-Routers0326.pdf

...which in turn refers to https://nvlpubs.nist.gov/nistpubs/ir/2024/NIST.IR.8425A.pdf

walterbell · 2026-03-24T01:36:02 1774316162

Good question for devices that ship with multiple network interfaces, multiple video outputs, no RAM and no software.

RiverCrochet · 2026-03-24T01:44:41 1774316681

If multiple network interfaces defines a router, then every cell phone is one, because every cell phone has a cellular and Wifi interface, and is a router in hotspot mode. Three interfaces if you count USB which can also be a network interface (hotspot works over USB in both Windows and Linux) and four if Bluetooth PAN is still a thing.

walterbell · 2026-03-24T03:00:06 1774321206

Speaking of phone companies, Apple will be manufacturing Mac Mini in USA.

If Apple can make a Neo laptop out of phone parts, they could make a US Airport router out of US mini PC parts.

reverius42 · 2026-03-24T04:23:42 1774326222

All routers ship with software.

(edit: and RAM!)

(edit: and NOT multiple video outputs!!)

walterbell · 2026-03-24T04:40:14 1774327214

x86 multi NIC barebone fanless PC is not for routing, nope.

reverius42 · 2026-03-24T05:19:50 1774329590

It definitely could be! And some people do use it for that!

(edit: but it's not considered a consumer grade router, that's for sure!)

dmonitor · 2026-03-24T06:13:12 1774332792

Who said anything about multiple NICs? Ethernet port and Wifi modem in AP mode are more than enough

mrsssnake · 2026-03-20T07:59:07 1773993547

Even if all my apps were from Google Play, it's not up to Google to remotely decide what code I can and cannot run on my device. Especially important when talking about whole population.

mrsssnake · 2026-03-17T08:51:27 1773737487

> You may not charge users money for Your Program, and Your Source must contain the monetization systems, including the licensing, trial period tracking, and payment system, present in the MMF Source without an alterations, and all of these systems must be active and working as intended in Your Program.

License is not Open Source.

mrsssnake · 2026-03-16T18:21:54 1773685314

- having sensible and very useful system files structure - centralized package management - instant full-disk snapshots and rollback - remote windows (Waypipe) - declarative configurations (NixOS) - FUSE - chroot