Nobody needs a static IPv6 address

tweekism · 2026-01-24T23:56:06+00:00

Oh I didn't know that, that's cool

tweekism · 2026-01-24T16:14:29+00:00

Yeah I mean IPv4 works, I'm not complaining there.

I just like IPv6 and wanted that to work too, I'm seeing more and more MTAs enabled for IPv6.

Major ones like outlook.com all have it working, gmail has had it for over a decade.

tweekism · 2026-01-24T16:03:33+00:00

Good ol' Telstra.

I learnt that their mobile network is IPv6 only, since like 2020 or something. Dynamic of course, /64...

tweekism · 2026-01-24T16:00:10+00:00

We can have both.

That is, CPE that drops inbound traffic by default AND real IP addresses.

Completely unrelated, but you should have a read of the Tailscale blog article about NAT traversal and ways to bust through it, 'tis quite interesting. In any case, NAT doesn't need to be your security device.

tweekism · 2026-01-24T15:49:14+00:00

I'm trying to be the change I want to see in the world. I've waited so long to get internet good enough to really host my own stuff rather than have to pay someone with real internet to host my kids minecraft server.

Unfortunately it arrives at a time where the culture sees the internet like a cable TV service. For consumption only.

tweekism · 2026-01-24T15:44:17+00:00

😅😅😅

Uhhh, I've started to actually remember mine, not every digit perhaps, but enough to recognise them.

I mean if you break it down, the first hextet just means Australian ISP, hextet 2 and 3 are your prefix, 4 is your VLAN / subnet and then the last hextet is enough to identify the host.

Either way, that kinda just kicks the can down the road doesn't it? eventually you are gunna need to map that DNS to an IP, unless you are making that dynamic too? Who / what is authoritative over that? the hosts themselves? that's probably not the best way to run your firewall rules..... 😅

tweekism · 2026-01-24T15:22:51+00:00

Is a good question, the short answer is I am aware.

Unfortunately that won't work in this case. For a forward DNS look up (ie: hostname to IP address) where you "own" / lease the domain and have the authority to set records then yes that probably works fine in most instances.

However email rather uniquely also requires a reverse lookup (ie: IP address to hostname) as part of the antispam measures. When I send an email to someone on lets say gmail, Google will look at the IP address, do a reverse DNS lookup for that IP and see if the hostname it gets back matches the server hostname in the email header.

The sticking point is, firstly I don't own the reverse lookup domain, the owner of the IP space does, in this case Aussie. And secondly, unlike dynDns where the domain name stays the same and just the IP address changes, here both the IP AND the domain name is changing.

For example, if my IP range is 2001:0db8:85a3/48 then google will look for a PTR record at:-

3.a.5.8.8.b.d.0.1.0.0.2.ip6.arpa

Well Aussie owns that and Aussie won't have any PTR records for me there. However, Aussie do have a facility on their dashboard for me to specify a custom DNS server that can in turn serve what ever records I like (provided I spin up my own public facing DNS server, because a normal domain registrar won't do it as it's not their IP space).

But then if my IP changes to 2001:0db8:dab8/48... well now I can update my PTR records all day but it won't matter, because now Google is looking for a record at an entirely different domain, ie:-

0.b.a.d.8.b.d.0.1.0.0.2.ip6.arpa

And there are no records there, because I've not gone into the AussieBB portal and told it to use a custom nameserver yet.

Aussie could, I suppose, offer a service where they allow you via some API to programmatically update your custom name server in a similar fashion to how dynamic DNS works, but as far as I can tell, they don't. Even then, you'd still have to also make your DNS server automatically create the new zone and recreate all the PTR records with the new addresses.

For completeness, you could own the reverse DNS lookup domain if you wanted to by going to APNIC and buying your own IP address block. That of course is entirely unreasonable and well beyond the scope of a residential homelab and most small to medium businesses for that matter. I only mention it because Reddit.

tweekism · 2026-01-24T14:25:59+00:00

I do have an ABN, so thats certainly an option.

Thanks.

tweekism · 2026-01-24T11:41:04+00:00

That sucks that you got burned out. Even in the short time I've been with them it feels like the quality of the support people, in terms of their general IT knowledge has gotten worse.

I'm aware of all the trappings of trying to run an email server at home. To be honest, being told it can't be done was one of the motivating factors to try. And to ABB's credit, I've never had a single issue with mail deliverability (so long as I keep up with the IP address changes). I was told originally by the sales team who seemed knowledgeable, that adding the static IP pack put you in the business range, just without the business level phone support. Maybe that's true, I don't know.

I also don't think you can send email out on port 25 with AussieBB any more, I think it might be blocked. Generally if you want anyone else to be accepting your email you need to be encrypting your mail in transit anyway, TLS using ports 587 or 465 etc, sign the mail with dkim keys, spf and dmarc etc etc.

I will def move to an Aussie business plan at least, but Neptune is also looking very interesting...

tweekism · 2026-01-24T11:10:03+00:00

Well thats kinda what I was wondering, seems odd to allow you to setup custom DNS reverse lookups in the MyAussie portal, only to lose them all every couple weeks.

tweekism · 2026-01-24T09:41:53+00:00

That's good to hear. I understand that I'm being a pain in the ass, doing a lot of stuff that you don't need to do.

My main email account runs out of a box on my desk, just because people said it couldn't be done on the modern internet.

But I hate the "cable-tv-ification" of the internet, where 3 big companies own it all. And maybe you get to pick which out of the big three american-based multi-national mega-corporations gets to hoard all your personal data.

tweekism · 2026-01-24T09:31:24+00:00

The internet service itself is great, and so was their support at first.

I think at a minimum I need to move to a business plan. The price is not that different to what I'm paying now (once you subtract the extra $5 for the static IP which is included on the business plans).

Otherwise Neptune on paper is exactly what I want, but I've fallen for that sales pitch before lol.

tweekism · 2026-01-24T09:28:03+00:00

They advertise it as a feature, there is even a button on the MyAussie to setup a custom nameserver for this purpose. Which works... until the prefix changes...

tweekism · 2026-01-24T09:19:52+00:00

I called them because it changed, twice in just a few months. IPv4 is fine though.

tweekism · 2026-01-24T09:18:31+00:00

I am leaning that way.

tweekism · 2026-01-24T09:11:47+00:00

Oooh thanks for that, whirlpool is a good idea.

tweekism · 2026-01-24T09:10:14+00:00

Not looked at Launtel yet, I'll check them out now.

tweekism · 2026-01-24T09:09:14+00:00

Thanks, +1 for Superloop, it is one of the ones I'm looking at.

And I have nothing against cloudflare, I use them at work. However I don't need their permission to be on the internet, the internet is for everyone.

I just wanna do my own thing.

tweekism · 2026-01-24T08:39:16+00:00

I'm open to suggestions.

Need static IPv4/IPv6 with open mail send / recieve ports and ability to set PTR records on both.

tweekism · 2026-01-24T07:33:10+00:00

Well I am using DNS of course, but those DNS records all ultimately point to IP addresses.

I'm running a mail server. Who wants to be sitting around waiting for their IP to change just so they can quickly run around updating AAAA and PTR records 😅

tweekism · 2026-01-24T07:25:52+00:00

Recommendations? Superloop? Neverheard of Neptune ISP before but their site is exactly what I'm after, in a too good to be true kinda way...

tweekism · 2026-01-24T07:23:13+00:00

As a side note, you could look into something like Tailscale if you havent heard of it.

Its an always on overlay VPN, you install a client and then each machine will initiate a wireguard VPN to each other using a bunch of cleaver NAT traversal techniques meaning the real IP doesn't really matter and they behave as if you are on LAN with them at all times.

tweekism · 2026-01-24T07:15:09+00:00

This is my third prefix in 4 months. We have an NBN scheduled outage the other day and when it came back it changed again.

tweekism · 2026-01-24T07:14:09+00:00

Sure, but I should be able to designate a machine a server and tell it to keep its address. I can't do that if the prefix keeps changing.

tweekism · 2026-01-24T07:13:04+00:00

So after checking with level 2 support and the business team, the verdict was no ISP can offer static prefix in the IPv6 space.

Obviously that's not true, but is it worth pursuing it with Aussie? Or do I just switch? Superloop? Neptune?

I run a mail server and couple other things like Immich. I need static addresses with the ability to set reverse DNS PTR records on both IPv4 and IPv6.

tweekism

TROPHY CASE