Specifically, I think a lot of us in smaller installations use Clientless Users for most or all devices, so they have names. And this works well with various Sophos displays which allow you to sort/aggregate by User.
But this takes advantage of the IPv4 world where every machine has one MAC address, which gets one IP address (via DHCP4), which corresponds to one Clientless User name. In the IPv6 world, I see 4-5 IPv6 addresses per device so this mechanism for using Clientless User name won't work without some kind of enhancement.
I'm guessing that larger installations will have more powerful Authentication mechanisms/infrastructurers that might tie many IPv6 to a single user. And for smaller installations I'm thinking that perhaps Clientless User could switch to being based on MAC addresses or DUID instead of IP -- though maybe that breaks for upstream routers.
Is this making sense? Are there any plans for something to handle this? This is one reason I'm really not eager to get IPv6 -- which my current ISP doesn't yet provide anyhow -- because it feels like I'll never quite have a handle on a "user" (machine) anymore. In reality, all IoT devices (printers, AppleTVs, phones, tablets, etc) are logically a single user, and even devices that can directly support multiple users (laptops and desktops being the main examples) are usually a single user almost all of the time, and that's the way I think I want to monitor things logically.
More subnets -- which IPv6 supports -- can help, but in my use case everything is wireless, so a subnet/VLAN most straightforwardly corresponds to an SSID, and SSIDs are extremely limited. Thoughts?
