IETF Logo Mail Archive

Re: [BEHAVE] [Technical Errata Reported] RFC6052 (5984)

JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Tue, 18 February 2020 03:22 UTC

Return-Path: <prvs=131740a8d0=jordi.palet@consulintel.es>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E43DD1200C5 for <behave@ietfa.amsl.com>; Mon, 17 Feb 2020 19:22:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=consulintel.es
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aDVWcISOb-RX for <behave@ietfa.amsl.com>; Mon, 17 Feb 2020 19:22:55 -0800 (PST)
Received: from mail.consulintel.es (mail.consulintel.es [217.126.185.215]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D9C1E1200A3 for <behave@ietf.org>; Mon, 17 Feb 2020 19:22:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=consulintel.es; s=MDaemon; t=1581996147; x=1582600947; i=jordi.palet@consulintel.es; q=dns/txt; h=User-Agent:Date: Subject:From:To:CC:Message-ID:Thread-Topic:References: In-Reply-To:Mime-version:Content-type:Content-transfer-encoding; bh=33BylefqueNMgoZL/2sA6oyuCgCgbZ30fJD8YP7luHY=; b=Fth4olTIjmYCg rNkmt7odUM7dzk/EUvXuBgZfRT3YwwrINPFSYh2vpwMsPDh2fRIZLNp/bCwImZ25 RJuA0xGHBhTumw7w6kLx4sBmTDwrJ0Z62PZxrwCTSv82UZBFx3j4l5ZU4XfMov8A 5Yt+SxqYZByehomEGBC/wq9findnFE=
X-MDAV-Result: clean
X-MDAV-Processed: mail.consulintel.es, Tue, 18 Feb 2020 04:22:27 +0100
X-Spam-Processed: mail.consulintel.es, Tue, 18 Feb 2020 04:22:26 +0100
Received: from [220.247.146.70] by mail.consulintel.es (MDaemon PRO v16.5.2) with ESMTPA id md50000061943.msg for <behave@ietf.org>; Tue, 18 Feb 2020 04:22:24 +0100
X-MDRemoteIP: 10.8.10.6
X-MDHelo: [220.247.146.70]
X-MDArrival-Date: Tue, 18 Feb 2020 04:22:24 +0100
X-Authenticated-Sender: jordi.palet@consulintel.es
X-Return-Path: prvs=131740a8d0=jordi.palet@consulintel.es
X-Envelope-From: jordi.palet@consulintel.es
X-MDaemon-Deliver-To: behave@ietf.org
User-Agent: Microsoft-MacOutlook/10.22.0.200209
Date: Tue, 18 Feb 2020 14:22:03 +1100
From: JORDI PALET MARTINEZ <jordi.palet@consulintel.es>
To: Magnus Westerlund <magnus.westerlund=40ericsson.com@dmarc.ietf.org>, "huitema@huitema.net" <huitema@huitema.net>, "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>, "ietf@kuehlewind.net" <ietf@kuehlewind.net>
CC: "congxiao@cernet.edu.cn" <congxiao@cernet.edu.cn>, "behave@ietf.org" <behave@ietf.org>, "mohamed.boucadair@orange-ftgroup.com" <mohamed.boucadair@orange-ftgroup.com>, "dthaler@microsoft.com" <dthaler@microsoft.com>, "xing@cernet.edu.cn" <xing@cernet.edu.cn>, "dwing@cisco.com" <dwing@cisco.com>, "huitema@microsoft.com" <huitema@microsoft.com>
Message-ID: <2CE85161-C5F4-4737-B1D7-D44FF830C531@consulintel.es>
Thread-Topic: [BEHAVE] [Technical Errata Reported] RFC6052 (5984)
References: <20200216033519.9D51EF406CE@rfc-editor.org> <4bbe1633-3313-bdfb-8bb8-6d2ad571c724@huitema.net> <73fff6ba-dc6d-4360-ac4d-339265c9a09d@OPEXCAUBM8F.corporate.adroot.infra.ftgroup> <7D8AF4CC-81F6-4238-B6FD-585ED9F4B275@kuehlewind.net> <403203c107e6472a140409db337c791ff5be13f6.camel@ericsson.com>
In-Reply-To: <403203c107e6472a140409db337c791ff5be13f6.camel@ericsson.com>
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/behave/BvXO-WKnxqNiXQN63ZS6CDQMv7A>
Subject: Re: [BEHAVE] [Technical Errata Reported] RFC6052 (5984)
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/behave/>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Feb 2020 03:22:59 -0000

Just to respond in a single email.

I've read Christian, Med, and Mirja emails. Happy with that and I agree, if we need to fix it, it should be a new version.

Clearly it may be a misinterpretation of the actual document at least from one vendor implementation, as they don't allow it.

Regards,
Jordi
@jordipalet
 
 

El 18/2/20 2:52, "Behave en nombre de Magnus Westerlund" <behave-bounces@ietf.org en nombre de magnus.westerlund=40ericsson.com@dmarc.ietf.org> escribió:

    Hi,
    
    I have already rejected it on the grounds that what is proposed is not something
    unclear or that gets wrongly interpreted of what is intended. The proposed
    behavior appears to me also to be within what is allowed by the specification.
    So it is really only a proposal for further guidance. Something that may be
    relevant, but only if a new version of the document is defined. Maybe this
    should be changed for Hold for document update. 
    
    
    Cheers
    
    Magnus
    
    On Mon, 2020-02-17 at 13:46 +0100, Mirja Kuehlewind wrote:
    > Hi all,
    > 
    > I agree that this is probably not an errata. However, we could mark this as
    > “Hold for next Document Update”? I guess if there every will be an update,
    > this need further discussion, however, having it in the errata system can help
    > to remember it. Or do think people it should just be rejected for now?
    > 
    > Mirja
    > 
    > 
    > 
    > > On 17. Feb 2020, at 10:43, <mohamed.boucadair@orange.com> <
    > > mohamed.boucadair@orange.com> wrote:
    > > 
    > > Hi all, 
    > > 
    > > One further comment: the assumption we have for "stateless translation" is
    > > as follows
    > > 
    > >   In these deployments, internal IPv6 nodes are addressed
    > >   using IPv4-translatable IPv6 addresses, which enable them to be
    > >   accessed by IPv4 nodes.
    > > 
    > > I don't see any issue with the current text under such assumption.
    > > 
    > > Cheers,
    > > Med
    > > 
    > > > -----Message d'origine-----
    > > > De : Behave [mailto:behave-bounces@ietf.org] De la part de Christian
    > > > Huitema
    > > > Envoyé : dimanche 16 février 2020 21:05
    > > > À : RFC Errata System; congxiao@cernet.edu.cn; huitema@microsoft..com;
    > > > marcelo@it.uc3m.es; mohamed.boucadair@orange-ftgroup.com;
    > > > xing@cernet.edu.cn; ietf@kuehlewind.net;
    > > > magnus.westerlund@ericsson.com; dwing@cisco.com; dthaler@microsoft.com
    > > > Cc : jordi.palet@theipv6company.com; behave@ietf.org
    > > > Objet : Re: [BEHAVE] [Technical Errata Reported] RFC6052 (5984)
    > > > 
    > > > Jordi,
    > > > 
    > > > The errata process is not the right way to handle this issue. You are
    > > > asking for a change in the specification, and such changes should go
    > > > through the working group, as part of a standard discussion.
    > > > 
    > > > To go to the specific technical point: it is indeed completely doable
    > > > to
    > > > use the same /64 prefix for a local subnet and for a NAT service. The
    > > > only requirement is that the NAT be capable to distinguishing between
    > > > a
    > > > translated address and a local address, and that requirement is
    > > > implicit
    > > > in RFC6502. For example, the NAT could reserve <64bit>:dead:beef::/96
    > > > for the 6to4 service, and use DUD to defend against hosts configuring
    > > > an
    > > > address in the same /64 prefix. That may not be a perfect solution,
    > > > but
    > > > that's something the working group should discuss, not something to be
    > > > handled summarily through the errata process.
    > > > 
    > > > -- Christian Huitema
    > > > 
    > > > On 2/15/2020 7:35 PM, RFC Errata System wrote:
    > > > > The following errata report has been submitted for RFC6052,
    > > > > "IPv6 Addressing of IPv4/IPv6 Translators".
    > > > > 
    > > > > --------------------------------------
    > > > > You may review the report below and at:
    > > > > 
    https://protect2.fireeye.com/v1/url?k=244c0d64-7898013a-244c4dff-8691959ed9b7-c65f53b92dad5084&q=1&e=f4738ef5-d2a3-4f09-87e8-099582e1d0ef&u=https%3A%2F%2Fwww.rfc-editor.org%2Ferrata%2Feid5984
    > > > > 
    > > > > --------------------------------------
    > > > > Type: Technical
    > > > > Reported by: Jordi Palet Martinez <jordi.palet@theipv6company.com>
    > > > > 
    > > > > Section: 3.3
    > > > > 
    > > > > Original Text
    > > > > -------------
    > > > > Organizations deploying stateless IPv4/IPv6 translation SHOULD
    > > > 
    > > > assign a Network-Specific Prefix to their IPv4/IPv6 translation
    > > > service.
    > > > > 
    > > > > Corrected Text
    > > > > --------------
    > > > > Organizations deploying stateless IPv4/IPv6 translation SHOULD
    > > > 
    > > > assign a Network-Specific Prefix for the exclusive use of their
    > > > IPv4/IPv6 translation service.
    > > > > 
    > > > > Notes
    > > > > -----
    > > > > This seems obvious but is not. The NSP must only be used for the
    > > > 
    > > > translation service. If the NSP is used only, for example in an
    > > > enterprise network, in the LANs, and the translator allows it, it may
    > > > create conflicts, as the resulting IPv6 address (NSP+IPv4 address) may
    > > > be the same as a host inside the LAN has been configured with (either
    > > > manually, or with SLAAC, DHCPv6), etc.
    > > > > 
    > > > > It has been confirmed that at least one vendor already realized this
    > > > 
    > > > and the implementation doesn't work if the prefix is used both for the
    > > > translator service and one of the LANs, but there is no explicit
    > > > documentation on that. So if configured, the box doesn't work, but
    > > > doesn't report is an an "invalid" config.
    > > > > 
    > > > > Instructions:
    > > > > -------------
    > > > > This erratum is currently posted as "Reported". If necessary, please
    > > > > use "Reply All" to discuss whether it should be verified or
    > > > > rejected. When a decision is reached, the verifying party
    > > > > can log in to change the status and edit the report, if necessary.
    > > > > 
    > > > > --------------------------------------
    > > > > RFC6052 (draft-ietf-behave-address-format-10)
    > > > > --------------------------------------
    > > > > Title               : IPv6 Addressing of IPv4/IPv6 Translators
    > > > > Publication Date    : October 2010
    > > > > Author(s)           : C. Bao, C. Huitema, M. Bagnulo, M. Boucadair,
    > > > 
    > > > X. Li
    > > > > Category            : PROPOSED STANDARD
    > > > > Source              : Behavior Engineering for Hindrance Avoidance
    > > > > Area                : Transport
    > > > > Stream              : IETF
    > > > > Verifying Party     : IESG
    > > > > 
    > > > > _______________________________________________
    > > > > Behave mailing list
    > > > > Behave@ietf.org
    > > > > https://www.ietf.org/mailman/listinfo/behave
    > > > 
    > > > _______________________________________________
    > > > Behave mailing list
    > > > Behave@ietf.org
    > > > https://www.ietf.org/mailman/listinfo/behave
    > 
    > 
    -- 
    Cheers
    
    Magnus Westerlund 
    
    
    ----------------------------------------------------------------------
    Networks, Ericsson Research
    ----------------------------------------------------------------------
    Ericsson AB                 | Phone  +46 10 7148287
    Torshamnsgatan 23           | Mobile +46 73 0949079
    SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
    ----------------------------------------------------------------------
    
    
    _______________________________________________
    Behave mailing list
    Behave@ietf.org
    https://www.ietf.org/mailman/listinfo/behave
    



**********************************************
IPv4 is over
Are you ready for the new Internet ?
http://www.theipv6company.com
The IPv6 Company

This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.

v2.23.0 | Report a Bug | By Email