I currently have the following hosts that I want IPv6 connectivity for:
- VPS
- Home server
- Big laptop
- Small laptop
- (Potentially) Other home computers used by other members of the family
- (Potentially) People visiting me at university
None of the hosts has native IPv6 access.
The VPS has internet access with static IPv4 addresses, and is the only one that I consider it feasible at this time to directly make a tunnel endpoint.
The home server is always on the home network (behind an NAT device that is theoretically under my control, but annoying), as are the other home computers.
When I am at home, both laptops are also on the home network.
When I am at university, the big laptop has (IPv4) internet access via the university network (behind NAT not under my control), and is on a private wireless network along with the small laptop and the computers of any visitors.
Currently, the VPS uses a tunnelbroker.net tunnel, and hosts a VPN. I have thought of the following ways to connect things together for IPv6:
- Have everything directly connect to the VPN: This only really works for the computers that I directly control and is very inefficient for communication between hosts on the same local network. (Though I guess I could set up separate local connectivity.)
- Ethernet-bridge everything together: This does not seem very good for either performance or security.
- Subnets with routing: One for the VPN, one for the home network and one for the wireless at university.
At the moment, I have a single routed /64, and am using subnets, with a /80 prefix for each. This works fine for manually configured hosts, but does not seem like a good thing to do according to the RFCs, and does not look like it will allow automatic configuration (which I would want to use for the other home computers, and for visitors at university).
So, the obvious thing to do seems to be to grab a /48 and give each subnet a /64. However, I am inclined to be miserly, and it seems highly extravagant to allocate a /48 for what might well be as few as 4 hosts and is unlikely to be more than 16 any time soon.
So, I ask:
- Do people feel that it is reasonable for me to allocate a /48 range?
- If I allocate one and then later decide I don't want it, will it be possible for me to release it back into the pool for others to use? (Specifically on tunnelbroker.net - but I thought this forum was a better fit for my post overall.)
Recommendations to arrange things in a different manner entirely are also fairly welcome.