[HOWTO] Configure IPv6 in order to "just work" (tm)

Started by meyergru, February 13, 2025, 02:54:29 PM

Previous topic - Next topic
Print
Go Down Pages 1 ... 3 4 5
User actions
November 06, 2025, 09:56:53 PM #60
Quote from: Patrick M. Hausen on November 06, 2025, 09:22:47 PMIn an enterprise setup you will in most cases have a Windows domain and Active Directory so all clients running Windows can do authenticated and trustworthy dynamic DNS updates.

You can still run OPNsense as your frontmost recursive DNS, just create forwarding entries for the internal zones pointing to your domain controllers.

Interesting, we just use azure ad now and intune, so domain controllers are not deployed and clients dont join a domain, they just are intuned via the "join work or school account" under settings. Phones just use MAM policies to secure work apps.
November 06, 2025, 10:01:07 PM #61
How large and probably more relevant how OLD is that company?
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
November 06, 2025, 10:29:36 PM #62
Quote from: Patrick M. Hausen on November 06, 2025, 10:01:07 PMHow large and probably more relevant how OLD is that company?

Well we used to deploy DC's but they just stoped being useful over time and there are other options like sharepoint or Azure files now. I work for an msp so its the SME market of 10-200 or so users per company. Companies really look to save money so if its not needed, its killed off and removed from what I see in the work we do.
November 06, 2025, 10:33:02 PM #63
Thanks. So I am the one a bit out of touch and old fashioned. It's been a while since I did systems integration for really large enterprises. More than 10 years. Back then all of them were heavily invested into AD.

Kind regards,
Patrick
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
November 06, 2025, 10:44:11 PM #64 Last Edit: November 06, 2025, 10:50:34 PM by allebone
Quote from: Patrick M. Hausen on November 06, 2025, 10:33:02 PMThanks. So I am the one a bit out of touch and old fashioned. It's been a while since I did systems integration for really large enterprises. More than 10 years. Back then all of them were heavily invested into AD.

Kind regards,
Patrick

Eh I wouldnt say you can become out of touch. Its just different now than it was before but same first principles basically apply. Kind of like the questions I am asking about ipv6 vs v4. Sure ok now we dont really use dhcp. Ok fine. So everyone is more private I guess and we just instead vlan off different 'kinds' of groups and they get their router advertisements and can either apply them or not its up to them. Sure it sounds different but its also kind of the same with just different ways of doing it. Also I would say SME is small medium not really large. I guess in another 10 years we will be back to how things were 10 years ago because seems like as soon as we start doing it this new way people want to go back how it was before to become 'more agile'. Sure whatever you want :) - as long as someone pays me I will build it whichever way you like basically. I still think using sharepoint to store files is weird but thats how they like it now. Sure in 10 years they will hate it again.
Print
Go Up Pages 1 ... 3 4 5
User actions