IETF Logo Mail Archive

Re: [addr-select-dt] RFC 3484 issues in address selection in the presence of an IPv4 NAT

Tim Chown <tjc@ecs.soton.ac.uk> Tue, 24 March 2009 00:07 UTC

Return-Path: <tjc@ecs.soton.ac.uk>
X-Original-To: addr-select-dt@core3.amsl.com
Delivered-To: addr-select-dt@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CE1F83A6A92 for <addr-select-dt@core3.amsl.com>; Mon, 23 Mar 2009 17:07:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.265
X-Spam-Level:
X-Spam-Status: No, score=-2.265 tagged_above=-999 required=5 tests=[AWL=-0.266, BAYES_00=-2.599, J_CHICKENPOX_13=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2bjEJnuHbOwU for <addr-select-dt@core3.amsl.com>; Mon, 23 Mar 2009 17:07:33 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [IPv6:2001:630:d0:f102::25e]) by core3.amsl.com (Postfix) with ESMTP id 2F4C33A6A3A for <addr-select-dt@ietf.org>; Mon, 23 Mar 2009 17:07:33 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (localhost.ecs.soton.ac.uk [127.0.0.1]) by falcon.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id n2O08FZD001217; Tue, 24 Mar 2009 00:08:15 GMT
X-DKIM: Sendmail DKIM Filter v2.8.2 falcon.ecs.soton.ac.uk n2O08FZD001217
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=ecs.soton.ac.uk; s=200903; t=1237853295; bh=AokFGwWM+kHOZsQdzV6I8hsYFTI=; h=Date:From:To:Cc:Subject:References:Mime-Version:In-Reply-To; b=wOUbNlzyz/+NjMgr14VMc+aHg/qcYNFR9Bj2wWysB06IRavNOXnEtPPWQpeoajqaC k3+NUY3ki3Z+VfNylX+oY6V68iFHgYb3zrl3fBaqZyEwuCAMJNSeRHPje+4vWjDYDE 1JQVQM8xFbBfrug/KjT2NmzKZYptZTmmqk2AsXCI=
Received: from gander.ecs.soton.ac.uk (gander.ecs.soton.ac.uk [2001:630:d0:f102::25d]) by falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [2001:630:d0:f102::25e]) envelope-from <tjc@ecs.soton.ac.uk> with ESMTP id l2N08E1140704307QO ret-id none; Tue, 24 Mar 2009 00:08:15 +0000
Received: from login.ecs.soton.ac.uk (login.ecs.soton.ac.uk [IPv6:2001:630:d0:f102:230:48ff:fe59:5f12]) by gander.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id n2O086SP023756 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 24 Mar 2009 00:08:06 GMT
Received: from login.ecs.soton.ac.uk (localhost.localdomain [127.0.0.1]) by login.ecs.soton.ac.uk (8.13.8/8.11.6) with ESMTP id n2O086pj025856; Tue, 24 Mar 2009 00:08:06 GMT
Received: (from tjc@localhost) by login.ecs.soton.ac.uk (8.13.8/8.13.8/Submit) id n2O08635025855; Tue, 24 Mar 2009 00:08:06 GMT
Date: Tue, 24 Mar 2009 00:08:06 +0000
From: Tim Chown <tjc@ecs.soton.ac.uk>
To: Arifumi Matsumoto <arifumi@nttv6.net>
Message-ID: <EMEW3|29302d80b5fb645ef6445b2b1767463bl2N08E03tjc|ecs.soton.ac.uk|0800.GC19828@login.ecs.soton.ac.uk>
References: <A28B6BD7-6BCF-4E1B-B0C0-2A3785B845B4@cisco.com> <695BF428-E196-4492-8FC7-51045BA2D89D@nokia.com> <AB501AE2-69A0-4B31-8860-ECD3CC095FDE@cisco.com> <A198B6AE-7A31-432C-94ED-33EC7158F7B8@nttv6.net> <20090324000800.GC19828@login.ecs.soton.ac.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <A198B6AE-7A31-432C-94ED-33EC7158F7B8@nttv6.net>
User-Agent: Mutt/1.4.2.2i
X-ECS-MailScanner: Found to be clean, Found to be clean
X-smtpf-Report: client=relay,ipv6; mail=; rcpt=
X-ECS-MailScanner-Information: Please contact the ISP for more information
X-ECS-MailScanner-ID: n2O08FZD001217
X-ECS-MailScanner-From: tjc@ecs.soton.ac.uk
Cc: 6man Chairs <6man-chairs@tools.ietf.org>, 6man-ads@tools.ietf.org, bob.hinden@nokia.com, Ron Bonica <rbonica@juniper.net>, addr-select-dt@ietf.org, Kurt Erik Lindqvist <kurtis@kurtis.pp.se>, Fred Baker <fred@cisco.com>, draft-denis-v6ops-nat-addrsel@tools.ietf.org
Subject: Re: [addr-select-dt] RFC 3484 issues in address selection in the presence of an IPv4 NAT
X-BeenThere: addr-select-dt@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IPv6 Address Selection Design Team <addr-select-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/addr-select-dt>, <mailto:addr-select-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/addr-select-dt>
List-Post: <mailto:addr-select-dt@ietf.org>
List-Help: <mailto:addr-select-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/addr-select-dt>, <mailto:addr-select-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2009 00:07:34 -0000

On Tue, Mar 24, 2009 at 08:29:36AM +0900, Arifumi Matsumoto wrote:
> Fred and Robert,
> thank you for shepherding.
> 
> Today's session made me feel that changing the existing *default*  
> address selection behavior is too difficult, now that that behavior  
> may be is utilized somewhere we don't know.

There is discussion of the current DT work in 6man on Tuesday - there
is certainly scope to discuss this there, to get input from the WG on
its perception of this issue.   There are certainly arguments to be
made either way.

> So, we definitely need customization mechanism of address selection  
> policy in application-specific, host-specific, and site-specific way.

The application-specific issues are certainly interesting - as we discussed
this morning you may hit other 'middlebox' issues than the NAT issue that
this draft discusses, e.g. a 'better' path may be firewalled or filtered
in some way that an alternative path is not, for a specific application
protocol/port.

Tim

> On 2009/03/24, at 6:52, Fred Baker wrote:
> 
> >
> >On Mar 23, 2009, at 2:36 PM, Bob Hinden wrote:
> >
> >>Fred,
> >>
> >>We have a design team in this area.  I suspect they were in the the  
> >>v6ops session this morning.  I copied them here.
> >
> >I'm pretty sure they were. I'm formally closing the loop here, which  
> >I said I would do this morning.
> >
> >>Bob
> >>
> >>
> >>On Mar 23, 2009, at 2:02 PM, ext Fred Baker wrote:
> >>
> >>>I'd like to bring
> >>>
> >>>http://tools.ietf.org/html/draft-denis-v6ops-nat-addrsel
> >>>"Problems with IPv6 source address selection and IPv4 NATs", Remi
> >>>Denis-Courmont, 18-Feb-09, <draft-denis-v6ops-nat-addrsel-00.txt>
> >>>
> >>>to your attention. We discussed it briefly this morning in v6ops.  
> >>>The sense of the room was that it was likely related to your  
> >>>effort to improve RFC 3484.
> >>>
> >>>Along those lines, the discussion at the mike included at least  
> >>>two points that RFC 3484 runs afoul of. One is that RFC 3484  
> >>>enables no API for administrative control, and administrators are  
> >>>likely to want to update it in their environments. The other is  
> >>>that the logic that addresses have degrees of likelihood of being  
> >>>useful in a fixed order - any fixed order - is problematic.  
> >>>Rather, one might have an initial order one uses, but as the  
> >>>system gains experience of what address selections are most  
> >>>useful, it would be better to have the OS, guided by the  
> >>>application, try those addresses that have historically been  
> >>>useful first.
> >>>
> >>>How would you recommend proceeding? Would you prefer to take this  
> >>>draft into 6man and including it in the RFC 3484 update?
> >>
> >
> >_______________________________________________
> >addr-select-dt mailing list
> >addr-select-dt@ietf.org
> >https://www.ietf.org/mailman/listinfo/addr-select-dt
> 
> _______________________________________________
> addr-select-dt mailing list
> addr-select-dt@ietf.org
> https://www.ietf.org/mailman/listinfo/addr-select-dt

-- 
Tim

v2.23.0 | Report a Bug | By Email