What is an IP address?

An IP address (Internet Protocol address) is a numerical label assigned to every device on a network. It's how devices find and communicate with each other — similar to a postal address, but for network traffic. Without an IP address, a device has no logical identity on the network.

There are currently two versions of IP in use: IPv4, the original standard that most people are familiar with, and IPv6, the newer version designed to solve IPv4's biggest limitation — it's running out of addresses.

What the addresses look like

The most immediately obvious difference between IPv4 and IPv6 is the format. IPv4 addresses are short and familiar. IPv6 addresses are long, written in hexadecimal, and look intimidating at first — but the format has a clear logic to it.

IPv4
192.168.1.25
Format 4 octets, decimal
Bit length 32 bits
Separator Dot ( . )
Total addresses ~4.3 billion
IPv6
2001:0db8:85a3::8a2e:0370:7334
Format 8 groups, hexadecimal
Bit length 128 bits
Separator Colon ( : )
Total addresses 340 undecillion

IPv4 uses 32 bits split into four groups of 8 bits (octets), each written as a decimal number from 0–255. IPv6 uses 128 bits split into eight groups of 16 bits, each written as four hexadecimal characters separated by colons.

⚡ Reading IPv6 Addresses — Shorthand Rules

IPv6 addresses can be shortened using two rules the exam tests:

Rule 1 — Drop leading zeros: 0db8 becomes db8 — leading zeros in any group can be omitted.

Rule 2 — Collapse consecutive all-zero groups with "::": A sequence of groups that are all zeros can be replaced with :: — but only once per address. That's why 2001:0db8:0000:0000:0000:0000:0370:7334 can be written as 2001:db8::370:7334.

Why IPv6 exists — the address exhaustion problem

IPv4 was designed in 1981, when the internet was a small research network. Nobody anticipated that billions of phones, laptops, servers, smart TVs, and IoT devices would eventually need unique addresses.

⚠️ The Problem with IPv4

IPv4 has ~4.3 billion possible addresses. We used them all.

2011
Year IANA (the global IP authority) officially exhausted the last IPv4 address blocks

To cope, the industry deployed workarounds like NAT (Network Address Translation) — which lets many devices share a single public IPv4 address. NAT bought time, but it added complexity and broke certain applications. IPv6 solves the problem at the root by providing an astronomically larger address space.

IPv6's 128-bit address space provides approximately 340 undecillion unique addresses — that's 340 followed by 36 zeros. There are enough IPv6 addresses to assign trillions of addresses to every grain of sand on Earth. Running out is not a realistic concern.

IPv4 vs IPv6 — full comparison

IPv4 IPv6
Address length 32 bits 128 bits
Format 192.168.1.1 (decimal) 2001:db8::1 (hex)
Total addresses ~4.3 billion 340 undecillion
Address config Manual or DHCP Manual, DHCPv6, or SLAAC*
NAT required? Yes (address shortage) No — every device gets a public address
Header complexity Variable (options field) Simplified fixed header
Broadcast? Yes (255.255.255.255) No — uses multicast instead
Loopback address 127.0.0.1 ::1
Introduced 1981 1998

* SLAAC (Stateless Address Autoconfiguration) lets IPv6 devices configure their own address without a DHCP server, using the network prefix and their own MAC address.

Important IPv4 address ranges to know

Not all IPv4 addresses are used the same way. The exam tests several reserved ranges you need to recognize on sight.

IPv4 — Private
Private ranges (RFC 1918)
10.0.0.0/8  ·  172.16.0.0/12  ·  192.168.0.0/16
Not routable on the internet. Used inside homes and businesses. NAT translates these to a public IP at the router.
IPv4 — Loopback
Loopback address
127.0.0.1
Always refers to the local machine. Used to test the TCP/IP stack with ping 127.0.0.1. Traffic never leaves the device.
IPv4 — APIPA
APIPA range
169.254.0.0/16
Automatically assigned when DHCP fails. Seeing this means no DHCP server was reachable. Devices with APIPA addresses can only talk to other APIPA devices on the same segment.
IPv4 — Public
Public (routable) addresses
Everything else
Assigned by ISPs and routable across the internet. Your home router has one public IP that all your devices share through NAT.

Important IPv6 address types

IPv6 — Loopback
Loopback
::1
The IPv6 equivalent of 127.0.0.1. Refers to the local device. The full address is 0000:0000:0000:0000:0000:0000:0000:0001, compressed to ::1.
IPv6 — Link-local
Link-local address
fe80::/10
Automatically configured on every IPv6 interface. Only valid on the local network segment — not routable. Similar role to APIPA in IPv4.
IPv6 — Global
Global unicast
2000::/3
The equivalent of public IPv4 addresses — globally routable on the internet. Addresses starting with 2 or 3 are global unicast.
IPv6 — Unique local
Unique local
fc00::/7
The rough equivalent of private IPv4 ranges (RFC 1918). Not routable on the internet — used within organizations. Starts with fc or fd.
⚡ The Most Tested IPv6 Addresses on the A+ Exam

::1 — IPv6 loopback. The compressed form of all zeros with a final 1. Equivalent to 127.0.0.1.

fe80::/10 — Link-local. Every IPv6 interface gets one automatically. Not routable. Starts with fe80.

Addresses starting with 2 or 3 — Global unicast (public). Routable on the internet.

Special addresses cheat sheet

📋 Must-Know Special Addresses
127.0.0.1 v4
Loopback — tests the local TCP/IP stack. Never leaves the machine.
169.254.x.x v4
APIPA — assigned when DHCP fails. Device can only reach other APIPA devices on same segment.
192.168.x.x v4
Private range — used in most home and small office networks. Not routable on the internet.
10.x.x.x v4
Private range — commonly used in larger enterprise networks. Not routable on the internet.
::1 v6
IPv6 loopback — equivalent of 127.0.0.1. Compressed from 0000:...:0001.
fe80::/10 v6
Link-local — auto-configured on every IPv6 interface. Not routable. Equivalent to APIPA scope.
fc00::/7 v6
Unique local — IPv6 equivalent of private ranges (RFC 1918). Starts with fc or fd.

Do both versions run at the same time?

Yes — most networks today run dual-stack, meaning devices have both an IPv4 and an IPv6 address simultaneously. Your Windows machine almost certainly has both right now. Run ipconfig /all and you'll see both listed under each adapter — an IPv4 address in the familiar 192.168.x.x format and an IPv6 address starting with fe80 (link-local) or a longer global address.

The transition from IPv4 to IPv6 has been gradual and is still ongoing. IPv4 won't disappear overnight — the exam reflects this by testing both, and real-world networks will run dual-stack for years to come.

Key Takeaways

IPv4 uses 32-bit addresses in decimal (192.168.1.1) — about 4.3 billion total addresses, now exhausted
IPv6 uses 128-bit addresses in hexadecimal (2001:db8::1) — 340 undecillion addresses, solves the shortage
IPv6 addresses can be shortened: drop leading zeros and collapse consecutive zero groups with :: (only once per address)
127.0.0.1 (IPv4) and ::1 (IPv6) are both loopback addresses — they refer to the local machine
169.254.x.x = APIPA (IPv4)  ·  fe80::/10 = link-local (IPv6) — both are auto-assigned fallback addresses
Private IPv4 ranges: 10.x.x.x, 172.16–31.x.x, 192.168.x.x — not routable on the internet
IPv6 eliminated the need for NAT — every device gets its own globally unique public address
Most networks today run dual-stack — devices have both IPv4 and IPv6 addresses at the same time

IPv6 Transition Mechanisms — Network+ Deep Dive

The Network+ exam tests how organisations migrate from IPv4 to IPv6. Three transition mechanisms appear regularly: dual stack, tunnelling, and NAT64/translation.

MechanismHow It WorksExam Key Fact
Dual StackDevice runs both IPv4 and IPv6 simultaneously — uses whichever is appropriate per destinationPreferred method — most common in enterprise migration. Both stacks fully operational.
6to4 TunnellingEncapsulates IPv6 packets inside IPv4 packets to cross IPv4-only infrastructureIPv6 traffic treated as payload — used when IPv6-only islands need to communicate across IPv4 network
TeredoTunnels IPv6 over UDP/IPv4 — works through NAT devicesMicrosoft-developed; used when 6to4 fails behind NAT. Port 3544.
NAT64Translates between IPv6 and IPv4 at the network boundaryAllows IPv6-only clients to reach IPv4 servers — used in mobile networks
ISATAPIntra-Site Automatic Tunnel Addressing Protocol — tunnels IPv6 over IPv4 within a siteEmbeds IPv4 address in IPv6 address; less common than dual stack

IPv6 Address Configuration Methods

MethodHow It WorksExam Note
StaticManually configured IPv6 addressUsed for servers and infrastructure devices
DHCPv6 (Stateful)DHCPv6 server assigns address and tracks leasesLike DHCP for IPv4 — full control over assignments
SLAACStateless Address Autoconfiguration — device generates its own address from prefix in Router Advertisement + EUI-64 or randomNo DHCP server needed — router advertises /64 prefix, device self-configures. Privacy extensions randomise the interface ID.
DHCPv6 (Stateless)SLAAC for address + DHCPv6 for DNS/options onlyHybrid — router provides prefix, DHCPv6 provides DNS servers
⚡ Network+ exam tip — EUI-64: When using SLAAC, devices can generate the interface ID portion of their IPv6 address from their MAC address using EUI-64. The 48-bit MAC is split in half, FF:FE is inserted in the middle, and bit 7 is flipped. Result: a globally unique interface ID. Privacy extensions generate a random interface ID instead to prevent tracking.

IPv4 and IPv6 Security Considerations — Security+

Security+ tests security implications specific to each protocol version. IPv6 introduces new attack surfaces that many organisations overlook during migration.

TopicIPv4IPv6
IPsecOptional — added as extensionMandatory in spec (though often not enforced in practice)
NATUsed everywhere — hides internal addressesNot used — every device has public address (privacy concern)
ARP spoofingARP used to resolve IP→MACNDP (Neighbour Discovery Protocol) replaces ARP — NDP spoofing is equivalent attack
BroadcastBroadcast traffic exists — used for ARP, DHCPNo broadcast — uses multicast instead (reduces attack surface)
Rogue RA attackN/AAttacker sends fake Router Advertisements to hijack SLAAC — devices configure wrong gateway
Tunnel securityN/A6to4 and Teredo tunnels can bypass IPv4 firewall rules if not explicitly filtered
⚡ Security+ exam tip — IPv6 tunnel bypass: A common exam scenario involves an attacker using IPv6 tunnelling to bypass IPv4-focused security controls. If a firewall is configured to filter IPv4 traffic only and doesn't inspect tunnelled IPv6, an attacker can encapsulate IPv6 attacks inside IPv4 packets. Dual-stack environments must have IPv6 security controls in place — not just IPv4.

Network+ and Security+ Exam Scenarios

A device on an IPv6 network configures its own address without a DHCP server. What mechanism is being used, and what does the router provide?
SLAAC (Stateless Address Autoconfiguration). The router sends a Router Advertisement (RA) containing the /64 network prefix. The device combines this prefix with a self-generated interface ID (from EUI-64 or random) to form a complete /128 address.
An organisation is migrating to IPv6 but still has many IPv4-only servers. Which transition strategy allows clients to use both protocols without tunnelling?
Dual stack. Dual stack is the preferred migration approach — devices run both IPv4 and IPv6 simultaneously and use whichever is appropriate. No tunnelling overhead or translation complexity.
A security team notices devices are getting unexpected IPv6 default gateway assignments from an unknown source on the LAN. What attack is occurring?
Rogue Router Advertisement (RA) attack. An attacker is sending forged RA messages, causing SLAAC devices to configure the attacker as their default gateway — a Layer 3 man-in-the-middle. Defence: RA Guard on managed switches, which filters RA messages from non-router ports.

Related Articles

What Is a Subnet Mask? What Is NAT? What Is DHCP? What Is APIPA? Network Troubleshooting Commands What Is a Default Gateway? What Is a MAC Address? Networking Master Guide Network+ Cheat Sheet Security+ Cheat Sheet

Preparing for the A+ exam?

See the books and practice exams that make the most difference.

See Best Study Resources →